Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
HITCON 2017 Zeroday 發表會
Search
Inndy
August 26, 2017
Technology
0
1.3k
HITCON 2017 Zeroday 發表會
https://zeroday.hitcon.org/vulnerability/ZD-2016-00306
Inndy
August 26, 2017
Tweet
Share
More Decks by Inndy
See All by Inndy
工程師一定要懂的 Text Encoding
inndy
1
700
資訊安全:麻瓜的黑魔法防禦術
inndy
3
3k
HackmeCTF 平台背後的心酸血淚史
inndy
2
830
COSCUP 2018 Lightning Talk - 審稿好難,所以我們來寫程式吧
inndy
0
450
逆向工程:從入門到放棄
inndy
7
3.6k
No More Crypto Fails
inndy
33
8.1k
你再共用密碼啊
inndy
1
760
CTF From Zero To One
inndy
5
5.1k
逆向工程基礎
inndy
4
1.4k
Other Decks in Technology
See All in Technology
Pythonによる契約プログラミング入門 / PyCon JP 2025
7pairs
5
2.3k
入門 FormObject / An Introduction to FormObject #kaigionrails
expajp
2
1.6k
“2件同時配達”の開発舞台裏 〜出前館PMが挑んだダブルピック実現に向けた体験設計〜
demaecan
0
160
Optuna DashboardにおけるPLaMo2連携機能の紹介 / PFN LLM セミナー
pfn
PRO
1
750
「技術負債にならない・間違えない」 権限管理の設計と実装
naro143
33
9.8k
about #74462 go/token#FileSet
tomtwinkle
1
260
動画データのポテンシャルを引き出す! Databricks と AI活用への奮闘記(現在進行形)
databricksjapan
0
120
データエンジニアがこの先生きのこるには...?
10xinc
0
410
VCC 2025 Write-up
bata_24
0
140
業務自動化プラットフォーム Google Agentspace に入門してみる #devio2025
maroon1st
0
170
ユニットテストに対する考え方の変遷 / Everyone should watch his live coding
mdstoy
0
110
AI×Data×SaaS×Operation
sansantech
PRO
0
110
Featured
See All Featured
Fashionably flexible responsive web design (full day workshop)
malarkey
407
66k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
234
17k
BBQ
matthewcrist
89
9.8k
Stop Working from a Prison Cell
hatefulcrawdad
271
21k
How to Think Like a Performance Engineer
csswizardry
27
2k
VelocityConf: Rendering Performance Case Studies
addyosmani
332
24k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
140
34k
Rebuilding a faster, lazier Slack
samanthasiow
84
9.2k
The Invisible Side of Design
smashingmag
301
51k
[RailsConf 2023] Rails as a piece of cake
palkan
57
5.9k
Typedesign – Prime Four
hannesfritz
42
2.8k
Principles of Awesome APIs and How to Build Them.
keavy
127
17k
Transcript
)*5$0/;FSPEBZ 䧮䟝銴⤑㹆涸J1IPOF4&⛓飑暟"QQ䢔呪
)J 䧮僽*OOEZ BLB加啄
➛㣔䧮銴铞♧⦐ 飑暟"QQ剤㥪㢵䓳럊涸佦✲ @ sཀպ̼ @
䎃厥♧㣔 䧮罉꠸騈䧮铞 ؇̫٥
厥飑暟笪畀剤馄⤑㹆ꣳꆀ㉂ㅷ ⿶ⶍ㥪䧮䟝䳖䩛堥 s٥Ī٥A
None
搭䖕䧮⦛㽠䩧 #VSQ4VJUF㨥溏溏 ง๑•̀@•́ ง
䧮欽7VFKT㻨✫♧⦐溏匢 ⢵䮋鼇⤑㹆涸㉂ㅷ 齡儘⦬䊨⡲ⶍ㥪㖈欽7VFKT鄄OPEFKT䵆䖤㥪汥蕲 Aİs
٧(́◕◞౪◟◕
䱺衽涮植♴鎎㋲涸"1* 须俲剤⸈㺙 ಠ@ಠ
剤⦐䊨Ⱘ〭⨞KBEY 〳⟃管陼"OESPJE"QQ ҙŐ ұѨѠѽ♧
s̫A _ԍ
s̫A _ԍ
昸✫䵻⤑㹆涸J1IPOF4& ٧ ԫӟ ظ
㻨玑䒭䵻飑
穡卓剤"1*鸠䏞ꣳⵖ 鼩剤♧❉㼭稣眏尝岤䠑ⵌ İ
穡卓䧮♧⦐鿪尝䵻ⵌ இŐஇ
㔐곃♧♴ s٥Ī٥A
"&4$#$1,$4 s٥Ī٥A
1BEEJOH0SBDMF sİA
'JYFE,FZ*7 sİA
䧮ⶍⶍ僽♶僽铞䧮⦛欽 #SVQ4VJUF s٥Ī٥A
飑暟笪畀䥰鑪剤 44-5-4ゅ s٥Ī٥A
sİA
䖕⢵䟝䟝"QQ鿪㻨涸鸏 랃昈✫㥪⫹剤溏ⵌTRMJUF sŐA
@ sཀպ̼ @
卓搭剤42-*OKFDUJPO @ sཀպ̼ @
˙08"415PQ.PCJMF3JTLT'JOBM-JTU ˙.8FBL4FSWFS4JEF$POUSPMT ˙.*OTFDVSF%BUB4UPSBHF ˙.*OTVDJFOU5SBOTQPSU-BZFS1SPUFDUJPO ˙.6OJOUFOEFE%BUB-FBLBHF ˙.1PPS"VUIPSJ[BUJPOBOE"VUIFOUJDBUJPO ˙.#SPLFO$SZQUPHSBQIZ ˙.$MJFOU4JEF*OKFDUJPO ˙ 鸏䧮尝剤庠麕
魨⟨阮㶶贫㶸㖈1SFGFSFODF.BOBHFS酆
㥶卓䧮僽䟅䠑余乹罏 ̫
䎙㣔䖕䧮䪾须俲侮椚♧♴ ⚓♳)*5$0/;FSPEBZ
None
⼿⸔鹎遤醳庠
恠Ꟁ涸麕玑н sŐA й • 2016/11 送出 • ⽉月底廠商才有回應 • 修到⼀一半請我複測,接著交給其他廠商做檢測
• 拖了了半年年,2017/05 終於公開了了!⼼心好累
鸏⚆歲涸怪峯⿶㼱✫♧⦐ sӟA
昸➊랃剚剤鸏랃㢵怪峯 sŐ
醳醢顦♳䊨玑䌌 ಠ@ಠ
IUUQTMBVSFOUHJUIVCJPTPJOKFDUJPOT
䖰㷸绢㻨玑䒭涸儘⦬ 㽠ⴀ✫㉏겗 ⡹涸罉䌌铞♶㹁㽠僽怪峯⢵彂 䠮闒➮雊䧮⦛剤䊨⡲
䖎㢵剅硃䲿⣘涸眕⢿玑䒭 㽠剤㉏겗 ⡹剅㽷缺1)1涸剅♧㹁䪪涸ⵌ42-*OKFDUJPO
♧饱㔐㜡怪峯 鍑对剤㉏겗涸➃來肬➮⦛ ؇̫٥