Lucene search

K
zdtNcryptED021337DAY-ID-34125
HistoryMar 23, 2020 - 12:00 a.m.

360 Security Sandbox Escape 0day Exploit

2020-03-2300:00:00
ncryptED02
0day.today
456

Sandbox is a feature introduced to isolate risky programs.
Application running in sandbox have only limited access and it wont allow tasks such as network communication ,
creating file or anything malicious in nature
A vulnerability in 360 security sandbox allows attackers to escape from the sandbox feature enabling it to call other programs or another instance of itself outside the sandbox
This is not a hard task , all you have to do is to specify the location of the program to be run outside sandbox as argument to the exploit
The video shows a demo for this exploit