Home About
About
Cancel

About

WonYoung Jung

Pwner in south korea, known as ‘nonetype’

Interested in Fuzzing, Binary Analysis.

Career

2020

  • Best of the Best 8th TOP40
  • Seminar at ‘Affiliated Research Institute of ETRI’, ‘Kernel Exploit with Filesystem Fuzzer’
  • Security researcher @Diffense (2020.04 ~)
  • SMBGhost RCE Exploitation (KOR article)
  • Docker & Kubernetes vulnerability research
  • Diffense Windows kernel exploitation training (as trainer)
  • CodeBlue 2020 speaker
  • HITB+ CyberWeek 2020 speaker

2019

  • Best of the Best (A.K.A BoB) 8th Vulnerability Analysis Track
  • Member of BoBFuzzer(BoB project team)

2018

  • GeekPwn 2018 - Router Exploit(DLink, Netgear, Tenda)
  • OpenSecureLab 2nd seminar speaker - ‘Finding software bugs with Fuzzing’

Projects

2019

  • ‘Kernel Exploit with Filesystem Fuzzer’, as BoB project

CVEs

2021

  • Chromium (PDFium XFA)
    • issue 1164158
  • Foxit Reader
    • ZDI-CAN-13084
    • ZDI-CAN-13091
    • ZDI-CAN-13092
    • ZDI-CAN-13095
    • ZDI-CAN-13096
    • ZDI-CAN-13100
    • ZDI-CAN-13162
    • and 9 more

2019

  • Linux Filesystem (EXT4, BTRFS, F2FS)
    Click to see (total: 16) * CVE-2019-18885 * CVE-2019-19036 * CVE-2019-19037 * CVE-2019-19039 * CVE-2019-19318 * CVE-2019-19319 * CVE-2019-19377 * CVE-2019-19378 * CVE-2019-19447 * CVE-2019-19448 * CVE-2019-19449 * CVE-2019-19813 * CVE-2019-19814 * CVE-2019-19815 * CVE-2019-19816 * CVE-2019-19927

Contact