A Rust server accepts wasm code and executes it. We can perform a Spectre attack through our wasm code to leak the flag.

Original writeup (https://daniellimws.github.io/defcon-quals-19/gloryhost).