Back to directory

WRITEUP #5866

How I Chained 4 Bugs(Features?) into RCE on Amazon Collaboration System

RCE

by@orange_8361(Orange Tsai)

Program

Amazon

Published

Aug 11, 2018

Added to HackDex

Sep 15, 2022

Read Full Writeuphttp://blog.orange.tw/2018/08/how-i-chained-4-bugs-features-into-rce-on-amazon.html

▸ RELATED WRITEUPS

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

We Spent $20 To Achieve RCE And Accidentally Became The Admins Of .MOBI

Built with ❤️ by Shubham Rawat