>> TAG: #remote exploit

Microsoft Internet Explorer 11 – ‘jscript!JSONStringifyObject’ Use-After-Free

Tuleap 9.6 – Second-Order PHP Object Injection (Metasploit)

Microsoft Windows – jscript.dll ‘Array.sort’ Heap Overflow

Intel Content Protection HECI Service – Type Confusion Privilege Escalation

Microsoft Windows – ‘jscript!JsArraySlice’ Uninitialized Variable

Microsoft Windows – ‘jscript!RegExpFncObj::LastParen’ Out-of-Bounds Read

Microsoft Windows – ‘jscript!RegExpComp::Compile’ Heap Overflow Through IE or Local Network via WPAD

Microsoft Windows – ‘jscript!NameTbl::GetValDef’ Use-After-Free

Jenkins – XStream Groovy classpath Deserialization (Metasploit)

Linux/x64 – Custom Encoded XOR + Polymorphic + execve(/bin/sh) Shellcode (Generator)