exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 26 - 50 of 84

Files from Glazvunov

Chrome DeserializeFromMessage Validation Issue

Posted Mar 31, 2022

Authored by Google Security Research, Glazvunov

Chrome has an issue where a malformed message sent to DeserializeFromMessage may trigger deserialization of out-of-bounds data.

tags | exploit

advisories | CVE-2022-0797

SHA-256 | f016c2cc33607e475f4fb0feaf3b97c31f557eea1cb21d5c1b76fc4fa4ad9003

Download | Favorite | View

Chrome safe_browsing::ThreatDetails::OnReceivedThreatDOMDetails Use-After-Free

Posted Mar 30, 2022

Authored by Google Security Research, Glazvunov

Chrome suffers from a heap use-after-free vulnerability in safe_browsing::ThreatDetails::OnReceivedThreatDOMDetails. Versions affected include Google Chrome 96.0.4664.110 (Official Build) (64-bit) and Chromium 99.0.4807.0 (Developer Build) (64-bit).

tags | exploit

advisories | CVE-2022-0289

SHA-256 | abc96b3ccb6e22768b4210d82c4a8f2e4acb93ed93b406ea11be905b7b11fd03

Download | Favorite | View

Chrome chrome_pdf::PDFiumEngine::RequestThumbnail Heap Buffer Overflow

Posted Mar 18, 2022

Authored by Google Security Research, Glazvunov

Chrome suffers from a heap buffer overflow vulnerability in chrome_pdf::PDFiumEngine::RequestThumbnail.

tags | exploit, overflow

advisories | CVE-2022-0306

SHA-256 | bd3fa3d2b549b50b402df051a6cd94824b4d90a629f0814051f738170796b1e5

Download | Favorite | View

Chrome HandleTable::AddDispatchersFromTransit Integer Overflow

Posted Mar 16, 2022

Authored by Google Security Research, Glazvunov

Chrome suffers from an integer overflow vulnerability in HandleTable::AddDispatchersFromTransit that can lead to memory corruption.

tags | exploit, overflow

advisories | CVE-2022-0608

SHA-256 | 0ef0d4da3c4dc9fb06483f95973add0c92d39c6c630ce2e22e5798641135e44a

Download | Favorite | View

Chrome RenderFrameHostImpl Use-After-Free

Posted Feb 21, 2022

Authored by Google Security Research, Glazvunov

Chrome suffers from a state tracking issue in RenderFrameHostImpl that leads to a use-after-free vulnerability.

tags | exploit

advisories | CVE-2022-0290

SHA-256 | d581673d0c71222578b61244ffc597f2d89dd9ee51ee889782cd5588f7d54bf9

Download | Favorite | View

Chrome IPC::ChannelAssociatedGroupController Memory Corruption

Posted Jan 13, 2022

Authored by Google Security Research, Glazvunov

Chrome suffers from a memory corruption vulnerability in IPC::ChannelAssociatedGroupController due to interface ID reuse.

tags | exploit

advisories | CVE-2021-4098

SHA-256 | 23b2104d82495d408d6c49e60967e71884e4e77854a1cebb576ccad92a937b92

Download | Favorite | View

Chrome storage::BlobURLStoreImpl::Revoke Heap Use-After-Free

Posted Jan 7, 2022

Authored by Google Security Research, Glazvunov

Chrome suffers from a heap use-after-free vulnerability in storage::BlobURLStoreImpl::Revoke.

tags | exploit

advisories | CVE-2021-4057

SHA-256 | 08933f6422b86ae33f009b22a331db75fb1ea7da60743243cb0e1fc0c82a0af2

Download | Favorite | View

XNU inm_merge Heap Use-After-Free

Posted Jan 6, 2022

Authored by Google Security Research, Glazvunov

XNU suffers from a heap use-after-free vulnerability in inm_merge.

tags | exploit

advisories | CVE-2021-30937

SHA-256 | 7157a72995dfa18e7979cab877bfb5645e4f20d9554478a6b0c26d6daae56123

Download | Favorite | View

Chrome NavigationPreloadRequest Site Isolation Bypass

Posted Dec 16, 2021

Authored by Google Security Research, Glazvunov

Chrome suffers from a site isolation bypass vulnerability in NavigationPreloadRequest.

tags | exploit, bypass

advisories | CVE-2021-38010

SHA-256 | c9ae23bee94814ab6b61e9a833062d8e293e2578a25f1bb12700b1b43ab9d235

Download | Favorite | View

Chrome ThreadedIconLoader::DecodeAndResizeImageOnBackgroundThread Heap Use-After-Free

Posted Dec 16, 2021

Authored by Google Security Research, Glazvunov

Chrome suffers from a heap use-after-free vulnerability in ThreadedIconLoader::DecodeAndResizeImageOnBackgroundThread.

tags | exploit

advisories | CVE-2021-38005

SHA-256 | 71808e6bb0dde08cb3a27713b43d7dc091dfb113ccf137e1c64ebecc641c8d58

Download | Favorite | View

Chrome blink::NativeIOFile::DoRead Heap Use-After-Free

Posted Dec 16, 2021

Authored by Google Security Research, Glazvunov

Chrome suffers from a heap use-after-free vulnerability in blink::NativeIOFile::DoRead.

tags | exploit

advisories | CVE-2021-38006

SHA-256 | c59d2ce9fc476860bcf31c9b55f9ea51508a55eab0465bddfe51b527a15f6556

Download | Favorite | View

WebKit DOMWindow::open Heap Use-After-Free

Posted Oct 14, 2021

Authored by Google Security Research, Glazvunov

WebKit suffers from a heap use-after-free vulnerability in DOMWindow::open.

tags | exploit

advisories | CVE-2021-30849

SHA-256 | 1ce53d65a9cc597e9e50a3e264ce0d880897dd9133738769858924fe26e913a5

Download | Favorite | View

WebKit EventHandler::keyEvent Heap Use-After-Free

Posted Oct 14, 2021

Authored by Google Security Research, Glazvunov

WebKit suffers from a heap use-after-free vulnerability in EventHandler::keyEvent.

tags | exploit

advisories | CVE-2021-30848

SHA-256 | 7eabdea043659a894f5b12f74294c859932c851d4c626dd836dd8073af4422d8

Download | Favorite | View

WebKit PointerCaptureController::processPendingPointerCapture Heap Use-After-Free

Posted Oct 14, 2021

Authored by Google Security Research, Glazvunov

WebKit suffers from a heap use-after-free vulnerability in PointerCaptureController::processPendingPointerCapture.

tags | exploit

advisories | CVE-2021-30846

SHA-256 | 6ce184daf47d381bec0f093becdd7a23020d24e4485f1163f06267303f984ecc

Download | Favorite | View

Chrome HRTFDatabaseLoader::WaitForLoaderThreadCompletion Data Race

Posted Sep 22, 2021

Authored by Google Security Research, Glazvunov

Chrome suffers from a HRTFDatabaseLoader::WaitForLoaderThreadCompletion data race condition.

tags | exploit

advisories | CVE-2021-30603

SHA-256 | cbbb7af067da8a18782b6edada6db9b1b563f5bccf566cd7d4b1fd025dae8f61

Download | Favorite | View

WebKit Element::dispatchMouseEvent Heap Use-After-Free

Posted Aug 19, 2021

Authored by Google Security Research, Glazvunov

WebKit suffers from a heap use-after-free vulnerability in Element::dispatchMouseEvent.

tags | exploit

advisories | CVE-2021-30799

SHA-256 | 32ce340e9e7aafa598cb7a3f4f8b409cd814f55d9df9e771b2d4767d0216dbcb

Download | Favorite | View

WebKit WebCore::FrameLoader::PolicyChecker::checkNavigationPolicy Heap Use-After-Free

Posted Aug 19, 2021

Authored by Google Security Research, Glazvunov

WebKit suffers from a heap use-after-free vulnerability in WebCore::FrameLoader::PolicyChecker::checkNavigationPolicy.

tags | exploit

advisories | CVE-2021-30795

SHA-256 | 3bbacfe61c3afe8fcb813221566bd0ea237ec718789ecbd4ffc4394dbe1d0f85

Download | Favorite | View

Chrome JS WasmJs::InstallConditionalFeatures Object Corruption

Posted Aug 16, 2021

Authored by Google Security Research, Glazvunov

Chrome suffers from a JS object corruption vulnerability in WasmJs::InstallConditionalFeatures.

tags | exploit

advisories | CVE-2021-30561

SHA-256 | d93338742f0e327b777564c42e9113eddcd2f7b0558ef38e888cff53702c978b

Download | Favorite | View

Chrome Array Transfer Bypass

Posted May 14, 2021

Authored by Google Security Research, Glazvunov

The fix for CVE-2021-21148 has added a check in |ValueSerializer::WriteJSArrayBuffer| to make sure non-detachable array buffers cannot be transferred. The check can be bypassed with the help of asm.js and property getters.

tags | exploit

advisories | CVE-2021-21148, CVE-2021-21156

SHA-256 | ae2637e1d681177334781f4a6b614cf249946bb30e4223a9dc2793a92ea03f86

Download | Favorite | View

Chrome ClipboardWin::WriteBitmap Heap Buffer Overflow

Posted Feb 9, 2021

Authored by Google Security Research, Glazvunov

Chrome suffers from a heap buffer overflow in ClipboardWin::WriteBitmap.

tags | exploit, overflow

advisories | CVE-2020-16025

SHA-256 | 00d0d7de79dfd2a0e8af3e64476bfeea5656be5943122e02c9eadfa963aff5f6

Download | Favorite | View

Chrome SkBitmapOperations::UnPreMultiply Heap Buffer Overflow

Posted Feb 9, 2021

Authored by Google Security Research, Glazvunov

Chrome suffers from a heap buffer overflow vulnerability in SkBitmapOperations::UnPreMultiply.

tags | exploit, overflow

advisories | CVE-2020-16024

SHA-256 | a1fa0bec38c455f136cc9c048e1b5feae4bf948524c83deab91febf19e15a0ec

Download | Favorite | View

Chrome ConvertToJavaBitmap Heap Buffer Overflow

Posted Nov 9, 2020

Authored by Google Security Research, Glazvunov

Chrome on Android suffers from a ConvertToJavaBitmap heap buffer overflow vulnerability.

tags | exploit, overflow

advisories | CVE-2020-16011

SHA-256 | 6cc96d681acbe2353993f9686bff12b65ff3403d9d2f2e1174221ff43dfd1572

Download | Favorite | View

FreeType Load_SBit_Png Heap Buffer Overflow

Posted Oct 28, 2020

Authored by Google Security Research, Glazvunov

FreeType suffers from a heap buffer overflow vulnerability due to integer truncation in Load_SBit_Png.

tags | exploit, overflow

advisories | CVE-2020-15999

SHA-256 | 3e74cc76bab0b12102b081d5d5527d7a09ac96232ae08096c3cc4702512988b9

Download | Favorite | View

Chrome USB::OnServiceConnectionError Use-After-Free

Posted Oct 19, 2020

Authored by Google Security Research, Glazvunov

Chrome suffers from a use-after-free vulnerability in USB::OnServiceConnectionError.

tags | exploit

advisories | CVE-2020-6541

SHA-256 | af571cd7b73348569916874836e7fa9cbd595fe40acbf341f94227122d3a1e75

Download | Favorite | View

Chrome WebIDBGetDBNamesCallbacksImpl::SuccessNamesAndVersionsList Use-After-Free

Posted Oct 19, 2020

Authored by Google Security Research, Glazvunov

Chrome suffers from a use-after-free vulnerability in WebIDBGetDBNamesCallbacksImpl::SuccessNamesAndVersionsList.

tags | exploit

advisories | CVE-2020-6550

SHA-256 | 8e21afeab54923d3de27189a323803a9161f7809d6877e69a623691087435de9

Download | Favorite | View