6/2/2023 0 Comments Windows window organizerIn this talk, we will first introduce the basic architecture of the Desktop Window Manager, and explain how low privileged users interact with the dwm process. We found 10 bugs inside the dwm process, all of these bugs were reported to Microsoft and got acknowledgements. However, there’re not too much research on this attack surface. We found that this process has high privileges, users with low privileges can interact with the DWM process, which create a very large attack surface. Are there still other attack surfaces inside the windows graphics component?ĭesktop Window Manager (DWM.EXE) is the compositing window manager in Microsoft Windows since Windows Vista that enables the use of hardware acceleration to render the graphical user interface of Windows. Even so, it’s still difficult to discover new vulnerabilities inside win32k attack surface. ![]() Researchers discovered new attack surfaces such as win32k Callback, DirectX, DirectComposition, etc. In the past few years, Windows win32k privilege escalation vulnerabilities have emerged in an endless stream.
0 Comments
Leave a Reply. |