0

I have read a few articles about researchers being able to use flash or java vulnerability to bypass web browsers sandbox and hack a system. Can someone explain how such attacks work?

Here is an example article Chrome Sandbox Cracker (2011). If question seems broad, explaining only how one would achieve this will be enough for me to start with.

Anurag
  • 917
  • 1
  • 7
  • 14
  • 1
    Threatpost 2013: [using kernel exploits to bypass sandboxes for fun and profit](https://threatpost.com/using-kernel-exploits-bypass-sandboxes-fun-and-profit-031813/77638/) – Steffen Ullrich Sep 07 '16 at 16:49
  • There's no "web browsers sandbox", there's only Google Sandbox which is user-space made. The way to bypass it is to use kernel exploits. – Aria Sep 07 '16 at 18:42
  • you can't. i havn't heard of a sandbox breach in years. the last ones were plugin-based (flash, java), which is why those are going bye bye. new ones could be discovered, but they will get patched quick. – dandavis Sep 07 '16 at 20:06

0 Answers0