secretsquirrel google-security-research issues

secretsquirrel / google-security-research

Automatically exported from code.google.com/p/google-security-research

3 stars 0 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

FreeType 2.5.3 PCF parsing NULL pointer dereference due to 32-bit integer overflow

#158 GoogleCodeExporter closed 9 years ago
2
FreeType 2.5.3 PCF parsing NULL pointer dereference due to 32-bit integer overflow

#157 GoogleCodeExporter closed 9 years ago
5
Windows: Task Scheduler S4U Logon Elevation of Privilege

#156 GoogleCodeExporter closed 9 years ago
9
FreeType 2.5.3 Mac FOND resource parsing out-of-bounds read from stack

#155 GoogleCodeExporter closed 9 years ago
5
FreeType 2.5.3 Mac font parsing heap-based buffer overflow due to integer signedness problems

#154 GoogleCodeExporter closed 9 years ago
10
FreeType 2.5.3 Mac font parsing heap-based buffer overflow due to multiple integer overflows

#153 GoogleCodeExporter closed 9 years ago
6
[deleted issue]

#152 GoogleCodeExporter closed 9 years ago
0
FreeType 2.5.3 BDF parsing potential heap pointer disclosure

#151 GoogleCodeExporter closed 9 years ago
6
File Reference Object Constructor Does Not Clear Destructor

#150 GoogleCodeExporter closed 9 years ago
9
Adobe Reader X and XI for Windows out-of-bounds read in CoolType.dll

#149 GoogleCodeExporter closed 9 years ago
8
Adobe Reader X and XI for Windows unmapped memory read in AGM.dll

#148 GoogleCodeExporter closed 9 years ago
3
Adobe Reader X for Windows out-of-bounds read in CoolType.dll

#147 GoogleCodeExporter closed 9 years ago
3
Adobe Reader X and XI for Windows unmapped memory read in AGM.dll

#146 GoogleCodeExporter closed 9 years ago
4
Adobe Reader X for Windows out-of-bounds write in AcroRd32.dll

#145 GoogleCodeExporter closed 9 years ago
3
Adobe Reader X and XI for Windows out-of-bounds write in CoolType.dll

#144 GoogleCodeExporter closed 9 years ago
9
Adobe Reader X and XI for Windows out-of-bounds read in AcroRd32.dll

#143 GoogleCodeExporter closed 9 years ago
3
Adobe Reader X for Windows out-of-bounds read in AGM.dll

#142 GoogleCodeExporter closed 9 years ago
4
Adobe Reader X and XI for Windows object use-after-free in AcroForm.api

#141 GoogleCodeExporter closed 9 years ago
3
Adobe Reader X for Windows out-of-bounds read/write in CoolType.dll

#140 GoogleCodeExporter closed 9 years ago
3
Adobe Reader X and XI for Windows out-of-bounds write in AGM.dll

#139 GoogleCodeExporter closed 9 years ago
3
Windows: SMBv2 Symlink to Local File Vulnerability

#138 GoogleCodeExporter closed 9 years ago
7
Windows: Impersonation Check Bypass with MRXDAV

#137 GoogleCodeExporter closed 9 years ago
7
OS X IOKit kernel memory corruption due to bad bzero in IOBluetoothDevice

#136 GoogleCodeExporter closed 9 years ago
6
OS X IOKit kernel code execution due to NULL pointer dereference in IntelAccelerator

#135 GoogleCodeExporter closed 9 years ago
8
[deleted issue]

#134 GoogleCodeExporter closed 9 years ago
0
[deleted issue]

#133 GoogleCodeExporter closed 9 years ago
0
Microsoft Office 2007 shape drawing object use-after-free

#132 GoogleCodeExporter closed 9 years ago
3
Flash write crash at NULL + 0x2b288 (on 64-bit)

#131 GoogleCodeExporter closed 9 years ago
3
OS X networkd "effective_audit_token" XPC type confusion sandbox escape (with exploit)

#130 GoogleCodeExporter closed 9 years ago
7
Microsoft Office 2007 dispatch table out-of-bounds function call

#129 GoogleCodeExporter closed 9 years ago
3
Windows: Impersonation Check Bypass With CryptProtectMemory and CRYPTPROTECTMEMORY_SAME_LOGON flag

#128 GoogleCodeExporter closed 9 years ago
32
Windows 7: Admin Check Bypass in NtPowerInformation

#127 GoogleCodeExporter closed 9 years ago
9
OS X kASLR defeat due to kernel pointers in IOKit registry

#126 GoogleCodeExporter closed 9 years ago
4
Flash corruption after corrupting pre-validated bytecode

#125 GoogleCodeExporter closed 9 years ago
6
Flash memory corruption when upper casing malformed Unicode

#124 GoogleCodeExporter closed 9 years ago
3
Windows Elevation of Privilege in User Profile Service

#123 GoogleCodeExporter closed 9 years ago
45
Flash memory corruption in the G711 codec with 4-byte samples

#122 GoogleCodeExporter closed 9 years ago
8
OS X privilege escalation due to XPC type confusion in sysmond (with exploit)

#121 GoogleCodeExporter closed 9 years ago
4
Type Confusion in Setting Microphone Codec

#120 GoogleCodeExporter closed 9 years ago
5
Microsoft Office 2007 BoundSheet dt use-after-free

#119 GoogleCodeExporter closed 9 years ago
3
Windows: Elevation of Privilege in ahcache.sys/NtApphelpCacheControl

#118 GoogleCodeExporter closed 9 years ago
162
Microsoft Office 2007 MsoDrawingGroup rgChildRec invalid GlobalFree

#117 GoogleCodeExporter closed 9 years ago
4
Flash heap buffer overflow calling Camera.copyToByteArray() with a large ByteArray

#116 GoogleCodeExporter closed 9 years ago
4
Adobe Flash incorrect jit optimization with op_setglobalslot

#115 GoogleCodeExporter closed 9 years ago
5
Adobe Flash incorrect jit optimization with op_pushscope

#114 GoogleCodeExporter closed 9 years ago
5
Flash 14 on IE11, readAV crash on xmm instruction

#113 GoogleCodeExporter closed 9 years ago
4
Adobe Flash incorrect jit optimization with op_pushwith

#112 GoogleCodeExporter closed 9 years ago
4
Microsoft Office 2007 VBA ExtendedControl use-after-free

#111 GoogleCodeExporter closed 9 years ago
3
Microsoft Office 2007 PapxFkp rgbx bOffset memory corruption

#110 GoogleCodeExporter closed 9 years ago
7
Flash heap overflow in bytecode verifier

#109 GoogleCodeExporter closed 9 years ago
5