exploit the possibilities
Showing 1 - 25 of 1,361 RSS Feed

Files from Google Security Research

First Active2000-02-18
Last Active2019-07-18
Microsoft Windows RPCSS Activation Kernel Security Callback Privilege Escalation
Posted Jul 18, 2019
Authored by James Forshaw, Google Security Research

On Microsoft Windows, the RPCSS Activation Kernel RPC server's security callback can be bypassed resulting in elevation of privilege.

tags | exploit, kernel
systems | windows
advisories | CVE-2019-1089
MD5 | c4819f99e884719a97eddb52654d624b
Linux PTRACE_TRACEME Broken Permission / Object Lifetime Handling
Posted Jul 16, 2019
Authored by Jann Horn, Google Security Research

Linux suffers from broken permission and object lifetime handling for PTRACE_TRACEME.

tags | exploit
systems | linux
advisories | CVE-2019-13272
MD5 | 91c78e7e5a824d9c7ed235f47eecb190
Microsoft Windows HTTP To SMB NTLM Reflection Privilege Escalation
Posted Jul 15, 2019
Authored by Google Security Research, Glazvunov

Microsoft Windows suffers from an HTTP to SMB NTLM reflection that leads to a privilege escalation.

tags | exploit, web
systems | windows
advisories | CVE-2019-1019
MD5 | 62e80bf3709f00ac9657fb8dd16d9822
Microsoft Font Subsetting DLL ComputeFormat4CmapData Heap Corruption
Posted Jul 12, 2019
Authored by Google Security Research, mjurczyk

There is a Microsoft Font Subsetting DLL heap corruption vulnerability in ComputeFormat4CmapData.

tags | exploit
MD5 | 1e6e251496d7be9a3bc32fd32fae64ff
Microsoft DirectWrite / AFDKO OpenType Stack Corruption
Posted Jul 12, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a stack corruption vulnerability in OpenType font handling while processing CFF blend DICT operator.

tags | exploit
advisories | CVE-2019-1123
MD5 | 743e9318dc7ba438e2b58cc2c6bfdc2f
Microsoft DirectWrite / AFDKO OpenType Out-Of-Bounds Read / Write
Posted Jul 11, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a heap-baeed out-of-bounds read/write vulnerability in OpenType font handling due to empty ROS strings.

tags | exploit
advisories | CVE-2019-1124
MD5 | b63dfd0988e7941848953c7d532f19e2
Microsoft DirectWrite / AFDKO dnaGrow Insufficient Integer Overflow Check
Posted Jul 11, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from having an insufficient integer overflow check in dnaGrow.

tags | advisory, overflow
MD5 | d82c47ee0ae57de226097bbbba93f262
Microsoft DirectWrite / AFDKO OpenType Out-Of-Bounds Read
Posted Jul 11, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from an out-of-bounds read vulnerability in OpenType font handling due to undefined FontName index.

tags | exploit
MD5 | 15c7ccf9e674ae48cbdea2b4707dd238
Microsoft DirectWrite / AFDKO OpenType Post Table Bugs
Posted Jul 11, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from multiple bugs in OpenType font handling related to the "post" table.

tags | exploit
MD5 | 03a8863a15856003f71eeae5cd1770df
Microsoft DirectWrite / AFDKO OpenType NULL Pointer Dereference
Posted Jul 11, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a NULL pointer dereferences vulnerability in OpenType font handling while accessing empty dynarrays.

tags | exploit
MD5 | 3952521fdd8e47962dae0060e8032151
Microsoft DirectWrite / AFDKO OpenType Read Of Uninitialized Memory
Posted Jul 11, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from allowing a read of uninitialized BuildCharArray memory in OpenType font handling.

tags | advisory
MD5 | 0f597bc65a24128f467c60bc1b563e6b
Microsoft DirectWrite / AFDKO OpenType readEncoding Buffer Overflow
Posted Jul 11, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a heap-based buffer overflow vulnerability in OpenType font handling in readEncoding.

tags | exploit, overflow
MD5 | 7893bbd664f437470b182e7954cb25b0
Microsoft DirectWrite / AFDKO OpenType readCharset Buffer Overflow
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a heap-based buffer overflow vulnerability in OpenType font handling in readCharset.

tags | exploit, overflow
advisories | CVE-2019-1128
MD5 | 2390f6f6b9d3f16e5ec16d348e370a2a
Microsoft DirectWrite / AFDKO OpenType Out-Of-Bounds Read / Write
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a heap-based out-of-bounds read/write vulnerability in OpenType font handling due to unbounded iFD.

tags | exploit
advisories | CVE-2019-1121
MD5 | 75f817529c0169de5dc33f342a2db85c
Microsoft DirectWrite / AFDKO Uninitialized Memory Use
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from an issue where it makes use of uninitialized memory while freeing resources in var_loadavar.

tags | exploit
MD5 | cc83ed79f81085bd663f0e5b89b27fa6
Microsoft DirectWrite / AFDKO do_set_weight_vector_cube Buffer Overflow
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a stack-based buffer overflow vulnerability in do_set_weight_vector_cube for large nAxes.

tags | exploit, overflow
MD5 | ea013854421dcefe1e364e1e0479a561
Microsoft DirectWrite / AFDKO OpenType Stack Corruption Due To Negative nAxes
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a stack corruption vulnerability in OpenType font handling due to negative nAxes.

tags | exploit
advisories | CVE-2019-1127
MD5 | 578c1d982270df68c386d40bdf609eb1
Microsoft DirectWrite / AFDKO OpenType Stack Corruption Due To Negative cubeStackDepth
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a stack corruption vulnerability in OpenType font handling due to negative cubeStackDepth.

tags | exploit
advisories | CVE-2019-1118
MD5 | c2b87476244efa92ba4a9be90250e805
Microsoft DirectWrite / AFDKO OpenType Stack Corruption Due To Out-Of-Bounds cubeStackDepth
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a stack corruption vulnerability in OpenType font handling due to out-of-bounds cubeStackDepth.

tags | exploit
advisories | CVE-2019-1117
MD5 | ece5873e0796605b68a4b0b2246aca1d
Microsoft DirectWrite / AFDKO readTTCDirectory Integer Overflow
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a heap-based buffer overflow vulnerability due to integer overflow in readTTCDirectory.

tags | exploit, overflow
MD5 | fd6441bc85a328f96dea6a3df9dd185e
Microsoft DirectWrite / AFDKO OpenType readStrings Buffer Overflow
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a heap-based buffer overflow vulnerability in OpenType font handling in readStrings.

tags | exploit, overflow
advisories | CVE-2019-1122
MD5 | d0abe298b7099fdd56fd834959ccc56b
Microsoft DirectWrite / AFDKO OpenType blendArray Stack Corruption
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a stack corruption vulnerability in OpenType font handling due to incorrect handling of blendArray.

tags | exploit
advisories | CVE-2019-1119
MD5 | 80a34393801d6bafb278329be316ef0b
Microsoft DirectWrite / AFDKO OpenType Stack Underflow
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from an interpreter stack underflow in OpenType font handling due to missing CHKUFLOW.

tags | exploit
MD5 | 7f6961168004be409e8c197691292c84
Microsoft DirectWrite / AFDKO OpenType readFDSelect Buffer Overflow
Posted Jul 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft DirectWrite / AFDKO suffers from a heap-based buffer overflow vulnerability in OpenType font handling in readFDSelect.

tags | exploit, overflow
advisories | CVE-2019-1120
MD5 | 8fb35d7cf2ae4c9390c26184ed325550
Microsoft Font Subsetting DLL MergeFonts Out Of Bounds Read
Posted Jul 9, 2019
Authored by Google Security Research, mjurczyk

An issue has been discovered where the Microsoft Font Subsetting DLL (fontsub.dll) suffers from a heap-based out-of-bounds read vulnerability in MergeFonts.

tags | exploit
MD5 | dd39b9fd5450a1793c602b5c46899104
Page 1 of 55
Back12345Next

File Archive:

July 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    34 Files
  • 2
    Jul 2nd
    15 Files
  • 3
    Jul 3rd
    9 Files
  • 4
    Jul 4th
    8 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    3 Files
  • 7
    Jul 7th
    1 Files
  • 8
    Jul 8th
    15 Files
  • 9
    Jul 9th
    15 Files
  • 10
    Jul 10th
    20 Files
  • 11
    Jul 11th
    17 Files
  • 12
    Jul 12th
    16 Files
  • 13
    Jul 13th
    2 Files
  • 14
    Jul 14th
    1 Files
  • 15
    Jul 15th
    20 Files
  • 16
    Jul 16th
    27 Files
  • 17
    Jul 17th
    7 Files
  • 18
    Jul 18th
    5 Files
  • 19
    Jul 19th
    12 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close