exploit the possibilities
Showing 1 - 25 of 41 RSS Feed

Files from Glazvunov

Email addressglazunov at google.com
First Active2019-04-01
Last Active2021-05-14
Chrome Array Transfer Bypass
Posted May 14, 2021
Authored by Google Security Research, Glazvunov

The fix for CVE-2021-21148 has added a check in |ValueSerializer::WriteJSArrayBuffer| to make sure non-detachable array buffers cannot be transferred. The check can be bypassed with the help of asm.js and property getters.

tags | exploit
advisories | CVE-2021-21148, CVE-2021-21156
MD5 | 2c54899cf0b5cf9ab027a5329061b62e
Chrome ClipboardWin::WriteBitmap Heap Buffer Overflow
Posted Feb 9, 2021
Authored by Google Security Research, Glazvunov

Chrome suffers from a heap buffer overflow in ClipboardWin::WriteBitmap.

tags | exploit, overflow
advisories | CVE-2020-16025
MD5 | e662c8bbb6a52764c274f15d1f509097
Chrome SkBitmapOperations::UnPreMultiply Heap Buffer Overflow
Posted Feb 9, 2021
Authored by Google Security Research, Glazvunov

Chrome suffers from a heap buffer overflow vulnerability in SkBitmapOperations::UnPreMultiply.

tags | exploit, overflow
advisories | CVE-2020-16024
MD5 | 32c9b241209db64702e60f06a67675c4
Chrome ConvertToJavaBitmap Heap Buffer Overflow
Posted Nov 9, 2020
Authored by Google Security Research, Glazvunov

Chrome on Android suffers from a ConvertToJavaBitmap heap buffer overflow vulnerability.

tags | exploit, overflow
advisories | CVE-2020-16011
MD5 | c8867dbfed920c86be64013795e08eb9
FreeType Load_SBit_Png Heap Buffer Overflow
Posted Oct 28, 2020
Authored by Google Security Research, Glazvunov

FreeType suffers from a heap buffer overflow vulnerability due to integer truncation in Load_SBit_Png.

tags | exploit, overflow
advisories | CVE-2020-15999
MD5 | 486d3f9f9d645b3bc7af767d7f2dd9cd
Chrome USB::OnServiceConnectionError Use-After-Free
Posted Oct 19, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from a use-after-free vulnerability in USB::OnServiceConnectionError.

tags | exploit
advisories | CVE-2020-6541
MD5 | 5edb5820b7d1b2c0f59e318c98fb4d0b
Chrome WebIDBGetDBNamesCallbacksImpl::SuccessNamesAndVersionsList Use-After-Free
Posted Oct 19, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from a use-after-free vulnerability in WebIDBGetDBNamesCallbacksImpl::SuccessNamesAndVersionsList.

tags | exploit
advisories | CVE-2020-6550
MD5 | 411e2d70af0ac966392cea6e525962e3
Chrome XRSystem::FocusedFrameChanged and FocusController::NotifyFocusChangedObservers Use-After-Free
Posted Oct 19, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from a use-after-free vulnerability in XRSystem::FocusedFrameChanged and FocusController::NotifyFocusChangedObservers.

tags | exploit
advisories | CVE-2020-6551
MD5 | 62c2c4c58b3d2bdb3596a004e37edb33
Chrome MediaElementEventListener::UpdateSources Use-After-Free
Posted Oct 14, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from a MediaElementEventListener::UpdateSources use-after-free vulnerability.

tags | exploit
advisories | CVE-2020-6549
MD5 | b3898822e20bcb41c1fa9b902ee4ea6d
Chrome NewFixedArray Missing Array Size Check
Posted Aug 25, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from a missing array size check in NewFixedArray.

tags | exploit
MD5 | 3f2e8b27a8a3776f81ab7b46459f8a8e
Chrome Typer::Visitor::TypeInductionVariablePhi Type Inference
Posted May 12, 2020
Authored by Google Security Research, Glazvunov, Tim Willis

Chrome suffers from a Typer::Visitor::TypeInductionVariablePhi type inference issue.

tags | exploit
MD5 | 293e69e50741f8cbad5283dac07b0c15
Firefox js::ReadableStreamCloseInternal Out-Of-Bounds Access
Posted May 1, 2020
Authored by Google Security Research, Glazvunov

Firefox suffers from an out-of-bounds access vulnerability in js::ReadableStreamCloseInternal.

tags | exploit
advisories | CVE-2020-6806
MD5 | e4939c663c04ebd98c353cdec851448a
Chrome ReadableStream::Close Out-Of-Bounds Access
Posted Apr 28, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from an out-of-bounds access vulnerability in ReadableStream::Close.

tags | exploit
advisories | CVE-2020-6390
MD5 | 4c46f95d1539b549419377053d9c4c19
WebKit AudioArray::allocate Data Race / Out-Of-Bounds Access
Posted Apr 23, 2020
Authored by Google Security Research, Glazvunov

WebKit has a data race condition in AudioArray::allocate that can lead to out-of-bounds access.

tags | exploit
advisories | CVE-2020-3894
MD5 | c2a83f90664d44d8317ce95d7a23c445
Chrome AudioArray::Allocate Data Race / Out-Of-Bounds Access
Posted Apr 23, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from an issue where a data race in AudioArray::Allocate can lead to out-of-bounds access.

tags | exploit
advisories | CVE-2020-6388
MD5 | 4fdac360982c541290848cba88dc91c7
Chrome BlobURLStoreImpl::Register Site Isolation Bypass
Posted Mar 12, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from a site isolation bypass in BlobURLStoreImpl::Register.

tags | exploit
MD5 | 3e8dfcf917baeca2c7394db3b67aac13
Chrome DesktopMediaPickerController::WebContentsDestroyed Use-After-Free
Posted Feb 27, 2020
Authored by Google Security Research, Glazvunov

Chrome suffers from a heap use-after-free vulnerability in DesktopMediaPickerController::WebContentsDestroyed.

tags | exploit
advisories | CVE-2019-13767
MD5 | 696153f1a945a02c625d23a13667f869
Google Chrome PasswordFormManager::OnGeneratedPasswordAccepted Heap Buffer Overflow
Posted Feb 11, 2020
Authored by Google Security Research, Glazvunov

Google Chrome suffers from a heap buffer overflow in PasswordFormManager::OnGeneratedPasswordAccepted.

tags | exploit, overflow
MD5 | 807c6fca1ba5cabf11c809f7eb06d603
Google Chrome PannerHandler::TailTime Heap Use-After-Free
Posted Feb 11, 2020
Authored by Google Security Research, Glazvunov

Google Chrome suffers from a heap use-after-free vulnerability in PannerHandler::TailTime.

tags | exploit
MD5 | 978f6ee66cfcab4ee4a316ce1a962b16
Chrome Site Isolation Bypass / File Disclosure
Posted Nov 8, 2019
Authored by Google Security Research, Glazvunov

The Chrome Payment Handler API suffers from site isolation bypass and local file disclosure vulnerabilities.

tags | exploit, local, vulnerability
MD5 | a0e44b48eda93d22f89c1bb42d02f804
WebKit NodeRareData::m_connectedFrameCount Integer Overflow / UXSS / Type Confusion
Posted Nov 7, 2019
Authored by Google Security Research, Glazvunov

WebKit suffers from an integer overflow in NodeRareData::m_connectedFrameCount that can lead to universal cross site scripting and type confusion.

tags | exploit, overflow, xss
advisories | CVE-2019-8822
MD5 | ab1e8dd57e42d668deb196080d883ef1
WebKit JSObject::putInlineSlow / JSValue::putToPrimitive Universal XSS
Posted Nov 5, 2019
Authored by Google Security Research, Glazvunov

WebKit suffers from a universal cross site scripting vulnerability in JSObject::putInlineSlow and JSValue::putToPrimitive.

tags | exploit, xss
MD5 | 892e0418e043bd54adfbb3915904b063
WebKit HTMLFrameElementBase::isURLAllowed Universal Cross Site Scripting
Posted Oct 28, 2019
Authored by Google Security Research, Glazvunov

WebKit suffers from an HTMLFrameElementBase::isURLAllowed universal cross site scripting vulnerability.

tags | exploit, xss
MD5 | ef966e699de1dd172f00de299de7c0a2
WebKit FrameLoader::clear Same-Origin Policy Bypass
Posted Oct 8, 2019
Authored by Google Security Research, Glazvunov

WebKit suffers from a same-origin policy bypass vulnerability in FrameLoader::clear.

tags | exploit, bypass
MD5 | 68c6220522a24fcd9a591457a3c19b6f
WebKit Cached Pages Universal Cross Site Scripting
Posted Oct 1, 2019
Authored by Google Security Research, Glazvunov

WebKit suffers from a universal cross site scripting vulnerability using cached pages.

tags | exploit, xss
MD5 | feb75421e7efde640b47418cf364c390
Page 1 of 2
Back12Next

File Archive:

August 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    1 Files
  • 2
    Aug 2nd
    7 Files
  • 3
    Aug 3rd
    5 Files
  • 4
    Aug 4th
    7 Files
  • 5
    Aug 5th
    0 Files
  • 6
    Aug 6th
    0 Files
  • 7
    Aug 7th
    0 Files
  • 8
    Aug 8th
    0 Files
  • 9
    Aug 9th
    0 Files
  • 10
    Aug 10th
    0 Files
  • 11
    Aug 11th
    0 Files
  • 12
    Aug 12th
    0 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close