Back to directory

WRITEUP #5462

Discovering a zero day and getting code execution on Mozilla's AWS Network

RCE

by@infosec_au(Shubham Shah)

Bounty

500

Program

Mozilla

Published

Mar 19, 2019

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://blog.assetnote.io/bug-bounty/2019/03/19/rce-on-mozilla-zero-day-webpagetest/

▸ RELATED WRITEUPS

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

We Spent $20 To Achieve RCE And Accidentally Became The Admins Of .MOBI

Built with ❤️ by Shubham Rawat