Quarkslab's blog
  • Archives

Being Overlord on the Steam Deck with 1 Byte

Date Tue 11 February 2025 By Gwaby Category Exploitation Tags AMD Steam Deck vulnerability UEFI SMM 2025

In this blog post we explain the consequences of asking our R&D boss for a Steam Deck as a Christmas gift. It involves a couple of vulnerabilities, limited primitives, challenging exploitation and a long disclosure process.

more ...

PixieFail: Nine vulnerabilities in Tianocore's EDK II IPv6 network stack.

Date Tue 16 January 2024 By Francisco Falcon Iván Arce Category Vulnerability Tags TianoCore EDK2 UEFI IPv6 PXE vulnerability 2024

This blog post provides details about nine vulnerabilities affecting the IPv6 network protocol stack of EDK II, TianoCore's open source reference implementation of UEFI.

more ...

For Science! - Using an Unimpressive Bug in EDK II to Do Some Fun Exploitation

Date Fri 23 June 2023 By Gwaby Category Exploitation Tags UEFI SMM vulnerability 2023

In this blog post we'll see a technique to gain code execution in SMM from a very limited write primitive.

more ...

  • Quarkslab's Website

  • SOCIAL

    • twitter
    • mastodon
    • github

  • CATEGORIES

    • •Android
    • •Automotive
    • •Blockchain
    • •Challenge
    • •Containers
    • •Cryptography
    • •Exploitation
    • •File Formats
    • •Fuzzing
    • •Hardware
    • •Kernel Debugging
    • •Life at Quarkslab
    • •Math
    • •Pentest
    • •Program Analysis
    • •Programming
    • •Reverse-Engineering
    • •Software
    • •Vulnerability
© 2025 Quarkslab · Powered by pelican-bootstrap3, Pelican, Bootstrap

Back to top