The Microsoft Windows kernel suffers from a use-after-free vulnerability with device contexts and NtGdiSelectBitmap.
>> ARCHIVE: 2015-11
The Microsoft Windows kernel suffers from an NtUserScrollDC memory corruption vulnerability.
The attached testcase crashes Window 7 32-bit with Special Pool enabled on win32k.sys due to a use-after-free condition. The bug appears to be a race condition between two threads and…
The attached poc crashes 32-bit Windows 7 with a screen resolution of 1024×768 and 32bit color depth. The crash occurs during a memmove operation while copying the cursor content from…
The 3D Vision service nvSCPAPISvr.exe installed as part of typical driver installations runs at Local System and has an insecure named pipe server. One of the commands in the server…
The attached testcase crashes Windows 7 32-bit due to a pool buffer overflow in an ioctl handler. Enabling special on ndis.sys netio.sys and ntoskrnl helps to track down the issue,…
Linux x86_64 Polymorphic execve Shellcode – 31 bytes
SAP Sybase Adaptive Server Enterprise XML External Entity Information Disclosure Vulnerability
vBulletin version 5.x suffers from a code execution vulnerability.
Apache Flex BlazeDS versions 4.7.0 and 4.7.1 suffer from a server-side request forgery vulnerability.