What was the initial attack vector used by the adversary, and through which protocol was it delivered?

What protocol has been used to notify that the exploit was successful?

What CVE is related to this vulnerability? Format CVE-YYYY-ID

Which specific assembly instruction helps enable the execution of the final command string?

What technique has been used to deliver the final stage of the payload within the exploit?

Which custom or native function has been called to execute the final command in the exploit?

What is the full command executed at the end of the exploit?

What is the value of the offset added to a register in order to retrieve the command string? (in hex)

Which structure/location does the exploit search to find the import/dispatch table?

Which two V8/DOM object types does the exploit confuse?



对手最初使用的攻击途径是什么，又是通过哪种协议进行传递的？
已使用何种协议来通知漏洞利用成功？
此漏洞相关的 CVE 编号是什么？格式：CVE-YYYY-ID
哪条具体的汇编指令有助于执行最终的命令字符串？
在该漏洞利用程序中，用于交付有效载荷的最终阶段采用了何种技术？
在该漏洞利用程序中，调用了哪个自定义或原生函数来执行最终命令？
在漏洞利用结束时执行的完整命令是什么？
为了获取命令字符串而添加到寄存器中的偏移量的值是多少？（以十六进制表示）
该漏洞利用程序搜索哪个结构/位置来查找导入/分派表？
该漏洞利用程序混淆了哪两种 V8/DOM 对象类型？