Expert: Miami
Thursday, October 10, 2024
CVE-2024-47561: Apache Avro arbitrary class instantiation
›
Avro schemas support specifying types as arbitrary Java classes, using properties like "java-class", "java-element" or ...
Tuesday, May 14, 2019
High level overview of Scudo
›
With this post, I am going to go through some high level details about the architecture of the allocator and some of the security features o...
Friday, May 10, 2019
What is the Scudo hardened allocator?
›
I am going to make a small series of posts about the Scudo hardened allocator, starting with some general considerations then getting into t...
Tuesday, August 14, 2018
About the C++14 sized delete operator
›
Alright, I am breaking a 3-year-posting-slumber here. Don't get too excited, I am probably not going to post regularly but I will try a...
Thursday, August 6, 2015
avast! Shatter Attack EoP
›
Here is another issue in avast!, in the GUI AvastUI.exe. It allowed arbitrary code execution within the context of that trusted process, and...
Tuesday, August 4, 2015
avast! TaskEx RPC EoP (and potential RCE)
›
Here is a new bug, this time in English. Since most of the logic issues have been dealt with, this one will be a memory corruption, with exp...
1 comment:
Monday, August 3, 2015
avast! Contournement de la protection personnelle
›
Voici un autre probleme de logique, cette fois-ci au niveau noyau. Il a ete corrige l'annee derniere dans les version vulnerables d'...
›
Home
View web version
