codenote google-security-research issues

codenote / google-security-research

Automatically exported from code.google.com/p/google-security-research

0 stars 0 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

[deleted issue]

#134 GoogleCodeExporter closed 9 years ago
0
[deleted issue]

#133 GoogleCodeExporter closed 9 years ago
0
Microsoft Office 2007 shape drawing object use-after-free

#132 GoogleCodeExporter closed 9 years ago
3
Flash write crash at NULL + 0x2b288 (on 64-bit)

#131 GoogleCodeExporter closed 9 years ago
3
OS X networkd "effective_audit_token" XPC type confusion sandbox escape (with exploit)

#130 GoogleCodeExporter closed 9 years ago
7
Microsoft Office 2007 dispatch table out-of-bounds function call

#129 GoogleCodeExporter closed 9 years ago
3
Windows: Impersonation Check Bypass With CryptProtectMemory and CRYPTPROTECTMEMORY_SAME_LOGON flag

#128 GoogleCodeExporter closed 9 years ago
32
Windows 7: Admin Check Bypass in NtPowerInformation

#127 GoogleCodeExporter closed 9 years ago
9
OS X kASLR defeat due to kernel pointers in IOKit registry

#126 GoogleCodeExporter closed 9 years ago
4
Flash corruption after corrupting pre-validated bytecode

#125 GoogleCodeExporter closed 9 years ago
6
Flash memory corruption when upper casing malformed Unicode

#124 GoogleCodeExporter closed 9 years ago
3
Windows Elevation of Privilege in User Profile Service

#123 GoogleCodeExporter closed 9 years ago
45
Flash memory corruption in the G711 codec with 4-byte samples

#122 GoogleCodeExporter closed 9 years ago
8
OS X privilege escalation due to XPC type confusion in sysmond (with exploit)

#121 GoogleCodeExporter closed 9 years ago
4
Type Confusion in Setting Microphone Codec

#120 GoogleCodeExporter closed 9 years ago
5
Microsoft Office 2007 BoundSheet dt use-after-free

#119 GoogleCodeExporter closed 9 years ago
3
Windows: Elevation of Privilege in ahcache.sys/NtApphelpCacheControl

#118 GoogleCodeExporter closed 9 years ago
113
Microsoft Office 2007 MsoDrawingGroup rgChildRec invalid GlobalFree

#117 GoogleCodeExporter closed 9 years ago
4
Flash heap buffer overflow calling Camera.copyToByteArray() with a large ByteArray

#116 GoogleCodeExporter closed 9 years ago
4
Adobe Flash incorrect jit optimization with op_setglobalslot

#115 GoogleCodeExporter closed 9 years ago
5
Adobe Flash incorrect jit optimization with op_pushscope

#114 GoogleCodeExporter closed 9 years ago
5
Flash 14 on IE11, readAV crash on xmm instruction

#113 GoogleCodeExporter closed 9 years ago
4
Adobe Flash incorrect jit optimization with op_pushwith

#112 GoogleCodeExporter closed 9 years ago
4
Microsoft Office 2007 VBA ExtendedControl use-after-free

#111 GoogleCodeExporter closed 9 years ago
3
Microsoft Office 2007 PapxFkp rgbx bOffset memory corruption

#110 GoogleCodeExporter closed 9 years ago
7
Flash heap overflow in bytecode verifier

#109 GoogleCodeExporter closed 9 years ago
5
Microsoft Office 2007 lcbPlcffndTxt/fcPlfguidUim memory corruption

#108 GoogleCodeExporter closed 9 years ago
6
Microsoft Office 2007 TTDeleteEmbeddedFont handle double delete

#107 GoogleCodeExporter closed 9 years ago
5
Flash logic error in bytecode verifier

#106 GoogleCodeExporter closed 9 years ago
7
[deleted issue]

#105 GoogleCodeExporter closed 9 years ago
0
[deleted issue]

#104 GoogleCodeExporter closed 9 years ago
0
Windows Acrobat Reader 11 Sandbox Escape in MoveFileEx IPC Hook

#103 GoogleCodeExporter closed 9 years ago
9
[deleted issue]

#102 GoogleCodeExporter closed 9 years ago
0
PicoLCD HID device driver pool overflow

#101 GoogleCodeExporter closed 9 years ago
4
Magic Mouse HID device driver overflow

#100 GoogleCodeExporter closed 9 years ago
4
IE11 AudioSrv RegistryKey EPM Privilege Escalation

#99 GoogleCodeExporter closed 9 years ago
4
Linux Kernel Buffer Overflow in Whiteheat USB Serial Driver

#98 GoogleCodeExporter closed 9 years ago
2
IE11 EPM Parent Process DACL Sandbox Escape

#97 GoogleCodeExporter closed 9 years ago
6
glibc off-by-one NUL byte heap overflow in gconv_translit_find

#96 GoogleCodeExporter closed 9 years ago
6
IE11 ImmutableApplicationSettings EPM Privilege Escalation

#95 GoogleCodeExporter closed 9 years ago
5
Windows Acrobat Reader 11 Sandbox Escape in NtSetInformationFile

#94 GoogleCodeExporter closed 9 years ago
3
Flash memory corruption in Actionscript 2 Array.join

#93 GoogleCodeExporter closed 9 years ago
6
OS X sandbox escape due to XPC type confusion in networkd

#92 GoogleCodeExporter closed 9 years ago
6
Linux kernel HID report fixup multiple off-by-one issues

#91 GoogleCodeExporter closed 9 years ago
2
Linux kernel hid-logitech-dj.c logi_dj_ll_raw_request heap overflow

#90 GoogleCodeExporter closed 9 years ago
2
Linux kernel hid-logitech-dj.c device_index arbitrary kfree

#89 GoogleCodeExporter closed 9 years ago
4
Linux kernel stack overflow when mounting ISO9660 image, including via a USB stick

#88 GoogleCodeExporter closed 9 years ago
2
[deleted issue]

#87 GoogleCodeExporter closed 9 years ago
0
[deleted issue]

#86 GoogleCodeExporter closed 9 years ago
0
[deleted issue]

#85 GoogleCodeExporter closed 9 years ago
0

Previous Next