Open
Bug 1501717
Opened 6 years ago
Updated 2 years ago
Hook ntdll!RtlDispatchAPC in order to capture APCs
Categories
(Core :: General, enhancement, P2)
Tracking
()
NEW
Tracking | Status | |
---|---|---|
firefox65 | --- | affected |
People
(Reporter: ccorcoran, Unassigned)
References
(Depends on 1 open bug)
Details
APCs are a way that external apps can force Firefox to execute arbitrary code, most commonly used as a way of DLL injection. We currently block malicious threads by gatekeeping in BaseThreadInitThunk; we could extend this type of mechanism to gatekeep APCs.
Updated•6 years ago
|
Priority: -- → P2
Updated•2 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•