Valentina Palmiotti — Vulnerability and Exploit Researcher, Adversary Services, IBM X-Force

Vulnerability and Exploit Researcher, Adversary Services, IBM X-Force

Security researcher focused on low-level vulnerabilities, exploit development, and offensive security.

Software Vulnerabilities January 20, 2023

Dissecting and Exploiting TCP/IP RCE Vulnerability “EvilESP”

10 min read - September’s Patch Tuesday unveiled a critical remote vulnerability in tcpip.sys, CVE-2022-34718. The advisory from Microsoft reads: “An unauthenticated attacker could send a specially crafted IPv6 packet to a Windows node where IPsec is enabled, which could enable a remote code…

Failed to load data

Analysis and insights from hundreds of the brightest minds in the cybersecurity industry to help you prove compliance, grow business and stop threats.

Cybersecurity News By Topic By Industry Exclusive Series Threat Research Podcast Events Contact About Us

Security Intelligence

{{title}}

{{title}}

{{title}}

{{title}}

Topics

Dissecting and Exploiting TCP/IP RCE Vulnerability “EvilESP”

{{{title}}}