Microsoft GDI+ out-of-bounds write proof of concept exploit that works due to invalid pointer arithmetic in ValidateBitmapInfo.
>> ARCHIVE: 2016-08
Microsoft GDI+ out-of-bounds write proof of concept exploit that works due to invalid pointer arithmetic in DecodeCompressedRLEBitmap.
There exists a Microsoft GDI+ heap-based buffer overflow vulnerability in the handling of EMR_EXTTEXTOUTA and EMR_POLYTEXTOUTA records.
There exists a Microsoft Windows kernel win32k.sys FON font processing divide-by-zero exception in win32k!MAPPER::bFoundExactMatch.
Siemens IP-Camera versions x.2.2.1798, CxMS2025_V2458_SP1, x.2.2.1798, and x.2.2.1235 suffer from an unauthenticated credential disclosure vulnerability.
Exploiting WebKit on Vita 3.60
X-Cart < 4.1.3 – Arbitrary Variable Overwrite
Honeywell IP-Camera HICC-1100PT – Credentials Disclosure
Cisco ASA 8.X – Authentication Bypass (EXTRABACON)
SIEMENS IP Camera CCMW1025 x.2.2.1798 – Remote Admin Credentials Change