Microsoft Windows - Desktop Bridge Virtual Registry Arbitrary File ReadWrite Privilege Escalation

Microsoft Windows - Desktop Bridge Virtual Registry Arbitrary File ReadWrite Privilege Escalation Windows: Windows: Desktop Bridge Virtual Registry Arbitrary File Read/Write EoP Platform: Windows 1709 not tested earlier version Class: Elevation of Privilege Summary: The handling of the virtual...

Microsoft Windows - Uniscribe Font Processing Heap Out-of-Bounds ReadWrite in USP10!AssignGlyphTypes (MS17-011)

Microsoft Windows - Uniscribe Font Processing Heap Out-of-Bounds ReadWrite in USP10!AssignGlyphTypes MS17-011 Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1023 We have encountered a crash in the Windows Uniscribe user-mode library, in the USP10!AssignGlyphTypes function, whil...

NVIDIA Driver 375.70 - DxgkDdiEscape 0x100008b Out-of-Bounds ReadWrite

NVIDIA Driver 375.70 - DxgkDdiEscape 0x100008b Out-of-Bounds ReadWrite Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=985 The DxgkDdiEscape handler for 0x100008b accepts a user supplied size as the limit for a loop, leading to OOB reads and writes. The supplied PoC passes an...

ALPINE-CVE-2016-9453

The t2preadwritepdfimagetile function in LibTIFF allows remote attackers to cause a denial of service out-of-bounds write and crash or possibly execute arbitrary code via a JPEG file with a TIFFTAGJPEGTABLES of length one...