Word type confusion vulnerability principle analysis of CVE-2 0 1 5-1 6 4 1-a vulnerability warning-the black bar safety net

The aforementioned word in parsing the docx document processing displacedByCustomXML attribute not customXML object for authentication, can be passed to other tags of the object to be processed, causing the type of Confusion, leading to arbitrary memory write, and ultimately through a carefully...

CVE-2 0 1 4-1 7 7 2 – Internet Explorer Use After Free vulnerability detailed analysis-vulnerability warning-the black bar safety net

http://blog.trendmicro.com/trendlabs-security-intelligence/root-cause-analysis-of-cve-2014-1772-an-internet-explorer-use-after-free-vulnerability/ Translated from TrendLabs ! /Article/UploadPic/2014-11/2014111310206615.jpg We often see a wide variety of vulnerabilities, from the user-after-free...