Exodus Blog

Exodus ensures that each and every discovered vulnerability is relevant, reliable, and well-documented before we disclose the issue to the appropriate vendor for remediation.

Latest Posts

Patch-gapping Google Chrome

Exodus Intel VRT September 9, 2019

Patch-gapping is the practice of exploiting vulnerabilities in open-source software that are already fixed (or are in the process of being fixed) by the developers

Pwn2Own 2019: Microsoft Edge Sandbox Escape (CVE-2019-0938). Part 2

Exodus Intel VRT May 27, 2019

This is the second part of the blog post on the Microsoft Edge full-chain exploit. It provides analysis and describes exploitation of a logical vulnerability

Pwn2Own 2019: Microsoft Edge Renderer Exploitation (CVE-2019-0940). Part 1

Exodus Intel VRT May 19, 2019

This year Exodus Intelligence participated in the Pwn2Own competition in Vancouver. The chosen target was the Microsoft Edge browser and a full-chain browser exploit was

Windows Within Windows – Escaping The Chrome Sandbox With a Win32k NDay

Exodus Intel VRT May 17, 2019

This post explores a recently patched Win32k vulnerability (CVE-2019-0808) that was used in the wild with CVE-2019-5786 to provide a full Google Chrome sandbox escape

Exodus Blog

Latest Posts

Patch-gapping Google Chrome

Pwn2Own 2019: Microsoft Edge Sandbox Escape (CVE-2019-0938). Part 2

Pwn2Own 2019: Microsoft Edge Renderer Exploitation (CVE-2019-0940). Part 1

Windows Within Windows – Escaping The Chrome Sandbox With a Win32k NDay

Categories

Intelligence

Support

Company