@pspaul just released a great writeup of the pacparser bug we found a few years back. The Zscaler VPN client, running as root, would inject the destination hostname in a JavaScript snippet and execute it with a very old version of SpiderMonkey. Paul transformed it in a CTF challenge for hack.lu and found the perfect vm bug to get RCE

https://blog.pspaul.de/posts/ancient-monkey-pwning-a-17-year-old-version-of-spidermonkey/

@swapgs @pspaul It'd be so nice if this site had RSS...

@buherator @swapgs Great idea! I added a feed here: https://blog.pspaul.de/atom.xml

Abstracts and external publications are still kinda broken, I'll fix that soon™