| Email address | private |
|---|---|
| First Active | 2007-03-08 |
| Last Active | 2018-09-25 |
WebKit suffers from a WebCore::InlineTextBox::paint out-of-bounds read vulnerability.
48d7ddd807a5fd533454a6cf9658183bWebKit suffers from a WebCore::RenderMultiColumnSet::updateMinimumColumnHeight use-after-free vulnerability.
ef9fbd1476a9ed5869403423f443b91cWebKit suffers from a WebCore::SVGTRefElement::updateReferencedText use-after-free vulnerability.
5e163bdb1d5fabd08aee1c2e22d9e5b2WebKit suffers from a WebCore::AXObjectCache::handleMenuItemSelected use-after-free vulnerability.
f2e33906b39202fd5af35a10c6fa1608WebKit suffers from a WebCore::Node::ensureRareData use-after-free vulnerability.
895cbd9c2699b63dc3e9313d4fbe8989WebKit suffers from a WebCore::SVGAnimateElementBase::resetAnimatedType use-after-free vulnerability.
5e48b10c894ac864f9f737dad8a51039WebKit suffers from a WebCore::RenderLayer::updateDescendantDependentFlags use-after-free vulnerability.
2972313b3d644a72b92a046ec75eadf9WebKit suffers from a WebCore::SVGTextLayoutAttributes::context use-after-free vulnerability.
8089cea300843f75b80b628759b8b832WebKit suffers from a WebCore::RenderTreeBuilder::removeAnonymousWrappersForInlineChildrenIfNeeded use-after-free vulnerability.
0f6661c3eb92987094c52de1d39f8f43There is a use-after-free vulnerability in jscript.dll related to how the lastIndex property of a RegExp object is handled. This vulnerability can be exploited through Internet Explorer or potentially through WPAD over local network. The vulnerability has been reproduced on multiple Windows versions with the most recent patches applied.
b2cf3dec9e5bd796bccbeb593fafdabdThere is a heap overflow in Skia when drawing paths with anti-aliasing turned off. This issue can be triggered in both Google Chrome and Mozilla Firefox by rendering a specially crafted SVG image. Proof of concepts included.
189bd359ac88d1f7b3b45f86c7b34089Skia and Firefox suffer from an issue where an integer overflow in SkTDArray can lead to an out-of-bounds write.
f7eb1e6d567bfd69e4a654a5a1a0c0cfThere is a use-after-free security vulnerability in WebKit. The vulnerability was confirmed on ASan build of revision 227958 on OSX.
35af2b53d57b81fe5f7927312787ad3fMicrosoft Edge suffers from an ACG bypass vulnerability with OpenProcess().
0872aa70743c4a85442779d23b9462d1Microsoft Windows suffers from multiple use-after-free issues in jscript Array methods.
54dbc94c4392c67aa6871073166ebbc0Microsoft Internet Explorer 11 suffers from a RegExp.lastMatch memory disclosure vulnerability.
0bbddb1e1bbe894461a1ab5b58369ce0Microsoft IE11 suffers from a use-after-free vulnerability in Js::RegexHelper::RegexReplace.
21e0ce967c4444c198feef093336a61eMicrosoft Edge suffers from an ACG bypass using UnmapViewOfFile.
00e8f8ad6ea4b8b6fa4ff8c9f691a03aWebKit suffers from a use-after-free vulnerability in detachWrapper.
ab40e72385ce2ecec8785d781b2d76e7WebKit suffers from a use-after-free vulnerability in WebCore::FrameView::clientToLayoutViewportPoint.
16c7265e2776a0e63832f568c8f7359dThere is an out-of-bounds read in jscript.dll library (used in IE, WPAD and other places).
5d6d4de766996a82680340bb4a93c196There is an heap overflow vulnerability in jscript.dll library (used in IE, WPAD and other places). The bug affects 2 functions, JsArrayStringHeapSort and JsArrayFunctionHeapSort.
615276599b5ee6f637294ed8b1cf135cThere is a use-after-free in jscript.dll library that can be exploited in IE11.
70d9dab62006eb1aac80ab95307a311bThere is a use-after-free vulnerability in jscript.dll. This issue could potentially be exploited through multiple vectors.
aec6b9f25c8ebc849fe5b43820ec5473There is a heap overflow in jscript.dll when compiling a regex. This issue could potentially be exploited through multiple vectors.
6090424aeefb73a1046a5bb0694554fc
© 2018 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed