15 matches found
Microsoft Windows - LoadUvsTable() Heap-based Buffer Overflow Vulnerability
Exploit for windows platform in category dos / poc Date: 15-03-2017 Author: Hossein Lotfi https://twitter.com/hosselot CVE: CVE-2016-7274 1. Description An integer overflow error within the "LoadUvsTable" function of usp10.dll can be exploited to cause a heap-based buffer overflow. Full analysis ...
Microsoft Windows - LoadUvsTable() Heap Buffer Overflow
Microsoft Windows - LoadUvsTable Heap Buffer Overflow Date: 15-03-2017 Author: Hossein Lotfi https://twitter.com/hosselot CVE: CVE-2016-7274 1. Description An integer overflow error within the "LoadUvsTable" function of usp10.dll can be exploited to cause a heap-based buffer overflow. Full analys...
Microsoft Windows LoadUvsTable() Buffer Overflow
Date: 15-03-2017 Author: Hossein Lotfi https://twitter.com/hosselot CVE: CVE-2016-7274 1. Description An integer overflow error within the "LoadUvsTable" function of usp10.dll can be exploited to cause a heap-based buffer overflow. Full analysis is available at:...
Microsoft Windows - 'LoadUvsTable()' Heap Buffer Overflow
Date: 15-03-2017 Author: Hossein Lotfi https://twitter.com/hosselot CVE: CVE-2016-7274 1. Description An integer overflow error within the "LoadUvsTable" function of usp10.dll can be exploited to cause a heap-based buffer overflow. Full analysis is available at:...
Microsoft Unicode Scripts Processor Arbitrary Code Execution Exploit
On the 8th December 2015, Microsoft released Security Bulletin MS15-130 to fix a vulnerability in Unicode Scripts Processor component found by Secunia Research. The vector for a successful exploitation is a specially crafted "True Type Font" TTF file, which typically can be embedded in e.g...
Microsoft Unicode Scripts Processor - Remote Code Execution
No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Final Binary Analysis | | | | || / \ || | | | || ||// \/|/ ''' ''' Title : Microsoft Unicode Scripts Processor Remote Code Execution Version : usp10.dll XP , Vista Analysis :...
Memory corruption
usp10.dll in Uniscribe aka the Unicode Script Processor in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, Office 2007 SP3 and 2010 SP1 and SP2, Live Meeting...
CVE-2013-3181
CVE-2013-3181 affects the Unicode Script Processor (USP10.DLL) used by Windows XP SP2/SP3 and Windows Server 2003 SP2. The vulnerability enables remote code execution via crafted OpenType fonts, described as the Uniscribe Font Parsing Engine Memory Corruption. Microsoft issued MS13-060 with patch...
Microsoft Unicode Scripts Processor Remote Code Execution
Exploit for windows platform in category dos / poc ========================================================= Microsoft Unicode Scripts Processor Remote Code Execution ========================================================= Title : Microsoft Unicode Scripts Processor Remote Code Execution Versio...
Microsoft Unicode Scripts Processor - Remote Code Execution (MS10-063)
''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | Final Binary Analysis | | | | || / \ || | | | || ||// \/|/ ''' ''' Title : Microsoft Unicode Scripts Processor Remote Code Execution Version : usp10.dll XP , Vista Analysis : http://www.abysssec.com Vendor :...
CVE-2010-2738
Microsoft Windows/Office Uniscribe (USP10.DLL) vulnerability CVE-2010-2738 involves improper validation of tables in OpenType fonts, leading to remote code execution via crafted web pages or Office documents. Affected components include USP10.DLL across Windows XP SP2/SP3, Server 2003 SP2, Vista ...
Mozilla Firefox 3.6.3 USP10.dll和xul.dll库多个拒绝服务漏洞
CVECAN ID: CVE-2010-1986,CVE-2010-1987,CVE-2010-1988 Firefox是非常流行的开源WEB浏览器。 Firefox的xul.dll库中的gfxWindowsFontGroup::MakeTextRun函数和USP10.dll库的 DoubleWideCharMappedString类中存在多个拒绝服务漏洞。如果网页中的JavaScript代码可创建包含有超长字符串元素的数组之后将超长字符串附加到了P元素的内容,就会触发内存破坏或空指针引用,导致浏览器崩溃。 Mozilla Firefox 3.6.3 厂商补丁: Mozilla...
CVE-2010-1987
Mozilla Firefox 3.6.3 on Windows XP SP3 allows remote attackers to cause a denial of service memory consumption, out-of-bounds read, and application crash via JavaScript code that appends long strings to the content of a P element, and performs certain other string concatenation and substring...
CVE-2010-1987
Mozilla Firefox 3.6.3 on Windows XP SP3 allows remote attackers to cause a denial of service memory consumption, out-of-bounds read, and application crash via JavaScript code that appends long strings to the content of a P element, and performs certain other string concatenation and substring...
CVE-2010-1987
Mozilla Firefox 3.6.3 on Windows XP SP3 is affected by CVE-2010-1987, allowing remote attackers to trigger memory consumption and a crash through crafted JavaScript that appends long strings to a P element and performs string operations. The root cause is tied to DoubleWideCharMappedString in USP...