| 发明名称 |
System and method for patching a device through exploitation |
| 摘要 |
A system and method that includes identifying a vulnerability in a computing device; accessing a vulnerability exploitation mapped to the identified vulnerability; at the computing device, executing the vulnerability exploitation and entering an operating mode of escalated privileges; and while in the operating mode of escalated privileges, updating the system with a vulnerability resolution. |
| 申请公布号 |
US9607156(B2) |
申请公布日期 |
2017.03.28 |
| 申请号 |
US201414188492 |
申请日期 |
2014.02.24 |
| 申请人 |
Duo Security, Inc. |
发明人 |
Oberheide Jon;Song Douglas |
| 分类号 |
G06F21/57;H04L29/06 |
主分类号 |
G06F21/57 |
| 代理机构 |
|
代理人 |
Schox Jeffrey;Alce Padowithz |
| 主权项 |
1. A method comprising:
identifying a vulnerability in a computing device; accessing a vulnerability exploitation mapped to the identified vulnerability, wherein the vulnerability exploitation comprises pre-identified computer-executable scripts or routines specifically provided to target the identified vulnerability in the computing device to thereby resolve or reduce the identified vulnerability, wherein, once executed, the pre-identified computer-executable scripts or routines of the vulnerability exploitation automatically change an operating mode of the computing device from an operating mode with less privileges to an operating mode with increased privileges; at the computing device, executing the pre-identified scripts or routines of the vulnerability exploitation and, through execution of the pre-identified scripts or routines of the vulnerability exploitation causing an entering into an operating mode of escalated privileges within the computing device; and while in the operating mode of escalated privileges, updating the computing device with a vulnerability resolution that functions to automatically use the escalated privileges to resolve or reduce the identified vulnerability. |
| 地址 |
Ann Arbor MI US |
