Firefox 0-Day targeting Tor-Users

Firefox 0-Day targeting Tor-Users

11/30/2016 [UPDATE: 12/01/2016] - Yesterday a Firefox 0-Day was made publicly available. We have analyzed the exploit from begin to end and talk about the different stages, including: the exploit techniques that aim to defeat general protection mechanisms like ASLR and DEP, as well as more advanced protection mechanisms like Export Address Filtering from EMET, the shellcode and its similarity to the FBI-Exploit from 3 years ago.

Author: Andreas Fobian, Carl-Benedikt Bender
G DATA | SIMPLY SECURE