exploit the possibilities
Showing 76 - 100 of 1,504 RSS Feed

Files from Google Security Research

First Active2000-02-18
Last Active2020-06-25
WebKit JSObject::putInlineSlow / JSValue::putToPrimitive Universal XSS
Posted Nov 5, 2019
Authored by Google Security Research, Glazvunov

WebKit suffers from a universal cross site scripting vulnerability in JSObject::putInlineSlow and JSValue::putToPrimitive.

tags | exploit, xss
MD5 | 892e0418e043bd54adfbb3915904b063
JSC Argument Object Reconstruction Type Confusion
Posted Nov 5, 2019
Authored by saelo, Google Security Research

JSC suffers from a type confusion vulnerability during bailout when reconstructing arguments objects.

tags | exploit
advisories | CVE-2019-8820
MD5 | 6a4caa0c9a9e7558705c23bf516ebff4
JavaScriptCore GetterSetter Type Confusion
Posted Oct 30, 2019
Authored by saelo, Google Security Research

JavaScriptCore (JSC) GetterSetter suffers from a type confusion vulnerability during DFG compilation.

tags | exploit
advisories | CVE-2019-8765
MD5 | 63f1952a7a692ab451a162d31ee902ed
Microsoft Windows Insecure CSharedStream Object Privilege Escalation
Posted Oct 28, 2019
Authored by James Forshaw, Google Security Research

Microsoft Windows suffers from an insecure CSharedStream object privilege escalation vulnerability.

tags | exploit
systems | windows
MD5 | 687f585eaab9feeb5d38e13cc05c1c00
WebKit HTMLFrameElementBase::isURLAllowed Universal Cross Site Scripting
Posted Oct 28, 2019
Authored by Google Security Research, Glazvunov

WebKit suffers from an HTMLFrameElementBase::isURLAllowed universal cross site scripting vulnerability.

tags | exploit, xss
MD5 | ef966e699de1dd172f00de299de7c0a2
Adobe Acrobat Reader DC For Windows JP2 Stream Buffer Overflow
Posted Oct 16, 2019
Authored by Google Security Research, mjurczyk

Adobe Acrobat Reader DC for Windows suffers from a heap-based buffer overflow vulnerability that can be leveraged via malformed JP2 streams.

tags | exploit, overflow
systems | windows
advisories | CVE-2019-8197
MD5 | 6d502d5ca8f705d8234dd901fb623916
Visual Studio Code Remote Debugger Enabled
Posted Oct 11, 2019
Authored by Tavis Ormandy, Google Security Research

Visual Studio Code enables its remote debugger by default when installed.

tags | exploit, remote
MD5 | e2bed7919efd579b180ac1c498c16541
Microsoft Windows Kernel nt!MiRelocateImage Out-Of-Bounds Read
Posted Oct 10, 2019
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from an out-of-bounds read vulnerability in nt!MiRelocateImage while parsing a malformed PE file.

tags | exploit, kernel
systems | windows
advisories | CVE-2019-1347
MD5 | b11e264135a1ee9c14ee6d0a6b9be23a
Microsoft Windows Kernel CI!HashKComputeFirstPageHash Out-Of-Bounds Read
Posted Oct 10, 2019
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from an out-of-bounds read vulnerability in CI!HashKComputeFirstPageHash while parsing a malformed PE file.

tags | exploit, kernel
systems | windows
advisories | CVE-2019-1346
MD5 | 2b4d1890b1779ec523e266b0696a2645
Microsoft Windows Kernel nt!MiParseImageLoadConfig Out-Of-Bounds Read
Posted Oct 10, 2019
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from an out-of-bounds read in nt!MiParseImageLoadConfig while parsing a malformed PE file.

tags | exploit, kernel
systems | windows
advisories | CVE-2019-1345
MD5 | ed96bcdeedbf757ded338f82d7252f0d
Microsoft Windows Kernel CI!CipFixImageType Out-Of-Bounds Read
Posted Oct 10, 2019
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from an out-of-bounds read vulnerability in CI!CipFixImageType while parsing a malformed PE file.

tags | exploit, kernel
systems | windows
advisories | CVE-2019-1344
MD5 | 234236a84a29251053125f4a4e7b7d46
Microsoft Windows Kernel nt!MiOffsetToProtos NULL Pointer Dereference
Posted Oct 10, 2019
Authored by Google Security Research, mjurczyk

The Microsoft Windows kernel suffers from a null pointer dereference vulnerability in nt!MiOffsetToProtos while parsing a malformed PE file.

tags | exploit, kernel
systems | windows
advisories | CVE-2019-1343
MD5 | 00131f510a52f3d940c140421ce76ea4
Microsoft Windows Kernel win32k.sys TTF Font Processing win32k!ulClearTypeFilter Pool Corruption
Posted Oct 10, 2019
Authored by Google Security Research, mjurczyk

Microsoft Windows Kernel suffers from a TTF font processing win32k!ulClearTypeFilter pool corruption vulnerability in win32k.sys.

tags | exploit, kernel
systems | windows
advisories | CVE-2019-1364
MD5 | 119f19b3c20bb86e4d4a2c8e4636479c
WebKit FrameLoader::clear Same-Origin Policy Bypass
Posted Oct 8, 2019
Authored by Google Security Research, Glazvunov

WebKit suffers from a same-origin policy bypass vulnerability in FrameLoader::clear.

tags | exploit, bypass
MD5 | 68c6220522a24fcd9a591457a3c19b6f
XNU Data Race Remote Double-Free
Posted Oct 7, 2019
Authored by Jann Horn, Google Security Research

XNU suffers from a remote double-free vulnerability due to a data race in IPComp input path.

tags | exploit, remote
advisories | CVE-2019-8717
MD5 | f107571d24ce915ad24992a19c351dc1
Signal Forced Call Acceptance
Posted Oct 5, 2019
Authored by Google Security Research, natashenka

There is a logic error in Signal that can cause an incoming call to be answered even if the callee does not pick it up.

tags | exploit
MD5 | cfd5f34a2c4720cf69df48f6e4d12c1c
Android Binder Driver Use-After-Free
Posted Oct 4, 2019
Authored by Google Security Research, Maddie Stone

Android suffers from a use-after-free vulnerability in the binder driver at /drivers/android/binder.c.

tags | exploit
advisories | CVE-2019-2215
MD5 | 0de8384215b8df385b050005e3962884
WebKit Cached Pages Universal Cross Site Scripting
Posted Oct 1, 2019
Authored by Google Security Research, Glazvunov

WebKit suffers from a universal cross site scripting vulnerability using cached pages.

tags | exploit, xss
MD5 | feb75421e7efde640b47418cf364c390
WebKit WebCore::ReplacementFragment::ReplacementFragment User-Agent Shadow Root Leak
Posted Oct 1, 2019
Authored by Google Security Research, Glazvunov

WebKit suffers from a user-agent shadow root leak in WebCore::ReplacementFragment::ReplacementFragment.

tags | exploit, root
MD5 | 1e45ed827ba900226f8651daf3f4187f
WebKit WebCore::command Universal Cross Site Scripting
Posted Oct 1, 2019
Authored by Google Security Research, Glazvunov

WebKit suffers from a universal cross site scripting vulnerability in WebCore::command.

tags | exploit, xss
MD5 | 9f13592add861df962bac226dc591317
WebKit URI / Synchronous Page Loads Universal Cross Site Scripting
Posted Oct 1, 2019
Authored by Google Security Research, Glazvunov

WebKit has an issue where URI and synchronous page loads are susceptible to a universal cross site scripting vulnerability.

tags | exploit, xss
MD5 | 31dbae9bdb725280046f9290bd4c6460
Chrome IndexedDBConnection::Close Use-After-Free
Posted Sep 25, 2019
Authored by Google Security Research, Mark Brand

Chrome suffers from a use-after-free vulnerability due to a double call to IndexedDBConnection::Close.

tags | exploit
MD5 | ccd74f505393bfa39425d2b90e649007
Chrome ~LevelDBIteratorImpl Use-After-Free
Posted Sep 25, 2019
Authored by Google Security Research, Mark Brand

Chrome suffers from a use-after-free vulnerability in ~LevelDBIteratorImpl.

tags | exploit
MD5 | 8f38499142f7d41b811ebaeadede65c1
iMessage NSSharedKeyDictionary Decoding Out Of Bounds Read
Posted Sep 24, 2019
Authored by Google Security Research, natashenka

An issues exists in iMessage where decoding NSSharedKeyDictionary can read objects out of bounds.

tags | exploit
advisories | CVE-2019-8641
MD5 | 0287ca35c1cc02013b10db0d1e17e7ae
V8 Map Migration Type Confusion
Posted Sep 17, 2019
Authored by saelo, Google Security Research

V8 map migration does not respect element kind, leading to a type confusion vulnerability.

tags | exploit
MD5 | f6ab8a5e41409debf546a94e0e445037
Page 4 of 61
Back23456Next

File Archive:

July 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    15 Files
  • 2
    Jul 2nd
    19 Files
  • 3
    Jul 3rd
    12 Files
  • 4
    Jul 4th
    1 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    25 Files
  • 7
    Jul 7th
    35 Files
  • 8
    Jul 8th
    4 Files
  • 9
    Jul 9th
    8 Files
  • 10
    Jul 10th
    0 Files
  • 11
    Jul 11th
    0 Files
  • 12
    Jul 12th
    0 Files
  • 13
    Jul 13th
    0 Files
  • 14
    Jul 14th
    0 Files
  • 15
    Jul 15th
    0 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close