Back to directory

WRITEUP #4938

Pwning Avast Secure Browser for fun and profit

RCECommand injection

by@WPalant(Wladimir Palant)

Program

Avast

Published

Jan 13, 2020

Added to HackDex

Dec 9, 2022

Read Full Writeuphttps://palant.info/2020/01/13/pwning-avast-secure-browser-for-fun-and-profit

▸ RELATED WRITEUPS

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

We Spent $20 To Achieve RCE And Accidentally Became The Admins Of .MOBI

Built with ❤️ by Shubham Rawat