BlindSide

Introducing #BlindSide: 1 buffer overflow to mount Speculative Blind ROP attacks that repeatedly probe the address space, craft arbitrary memory read gadgets, and enable reliable kernel exploitation in minutes - despite #FGKASLR #XoM #Spectre mitigations: https://t.co/BybJvS1Xk6 pic.twitter.com/JvTapoZFJ9

— VUSec (@vu5ec) September 9, 2020