Are You My Type? - Breaking .NET Sandboxes Through Serialization

Presented at Black Hat USA 2012, July 25, 2012, 3:30 p.m. (60 minutes)

In May, Microsoft issued a security update for .NET due to a number of serious issues I found. This release was the biggest update in the product's history, it aimed to correct a number of specific issues due to unsafe serialization usage as well as changing some of the core functionality to mitigate anything which could not be easily fixed without significant compatibility issues.

This presentation will cover the process through which I identified these vulnerabilities and provide information on how they can be used to attack .NET applications, both locally and remotely, as well as demonstrating breaking out of the partial trust sandboxes used in technologies such as ClickOnce and XAML Browser Applications.

Presenters:

• James Forshaw

Links:

• https://www.blackhat.com/html/bh-us-12/bh-us-12-archives.html#Forshaw
• https://media.blackhat.com/bh-us-12/Briefings/Forshaw/BH_US_12_Forshaw_Are_You_My_Type_Slides.pdf
• https://media.blackhat.com/bh-us-12/Briefings/Forshaw/BH_US_12_Forshaw_Are_You_My_Type_WP.pdf

Similar Presentations:

• DEF CON 31 (2023) / Second Breakfast: Implicit and Mutation-Based Serialization Vulnerabilities in .NET
• Summercon 2014 / The Agony and the Ecstasy of .NET Application Exploitation
• Black Hat USA 2011 / Hacking .Net Applications: The Black Arts