Please join us for our March chapter meeting. It’s a good opportunity to network with a variety of InfoSec professionals!
Title: An Introduction to Exploiting Use-after-Free Vulnerabilities
What do CVE-2015-5122, CVE-2015-0057, and CVE-2015-0823 all have in common? They were all Use-after-Free (UAF) vulnerabilities. Attackers have been exploiting UAF vulnerabilities in browsers at least as far back as 2007 (e.g. CVE-2007-0947). Have you ever wondered what the phrase “Use-after-Free” is referring to or do you want to see how one goes about exploiting a UAF vulnerability? This talk will introduce basic concepts and analysis techniques related to exploiting UAF vulnerabilities through an analysis of MS14-035.
Sean Verity has over ten years of experience in IT, IT audit, and pentesting at various companies. Sean also enjoys bug hunting in his spare time.
Attending this meeting earns you 1 CPE
The meeting doors will be opened at 7:45 AM for sign-in and networking, followed at 8:00 with our speaker’s presentation.
Please note our fee for attending this meeting:
–Current members of ISSA International: n/a –Friends and guests of the Lansing ISSA chapter: $10
–Students interested in I.T. security issues: $5
ISSA Lansing Board
The Lansing ISSA chapter appreciates the sponsorship of MSUFCU!