(CVE-2021-2321) Oracle VirtualBox E1000 BSS Out-Of-Bounds Read CVE: CVE-2021-2321Tested Versions:Oracle VirtualBox 6.1.18 revision r142142Product URL(s):htt... 2021-4-6 08:0:0 | 阅读: 14 | 收藏 | Advisories on STAR Labs - starlabs.sg pthis u16txpktlen pdesc u16len pdevins

(CVE-2021-3409) QEMU Heap Overflow in SDHCI Component CVE: CVE-2021-3409Tested Versions:QEMU version under 5.2.50Product URL(s):https://www.qemu.or... 2021-3-23 08:0:0 | 阅读: 15 | 收藏 | Advisories on STAR Labs - starlabs.sg sdhci adma sdhc dscr memory

(CVE-2021-34978) NETGEAR R6260 setupwizard.cgi Buffer Overflow Unauthenticated Remote Code Execution CVE: CVE-2021-34978Tested Versions:NETGEAR R6260 V1.1.0.78_1.0.1Product URL(s):https://www.ne... 2021-3-22 08:0:0 | 阅读: 16 | 收藏 | Advisories on STAR Labs - starlabs.sg strncpy nodename terminated analyse

(CVE-2021-34979) NETGEAR R6260 mini_httpd Buffer Overflow Unauthenticated Remote Code Execution CVE: CVE-2021-34979Tested Versions:NETGEAR R6260 V1.1.0.78_1.0.1Product URL(s):https://www.ne... 2021-3-22 08:0:0 | 阅读: 21 | 收藏 | Advisories on STAR Labs - starlabs.sg v25 ptemp setupwizard shellcode netgear

(CVE-2021-0950) Android NFC [email protected] Writer mode Out-Of-Bounds Write leading to Information Disclosure CVE: CVE-2021-0950Tested Versions:RQ1A.210205.004Product URL(s):https://www.android.com/An... 2021-3-5 08:0:0 | 阅读: 11 | 收藏 | Advisories on STAR Labs - starlabs.sg phnxpncihal bss hal nxp hardware

(CVE-2021-33760) Windows Media Foundation Integer Overflow Vulnerability CVE: CVE-2021-33760Tested Versions:mfsrcsnk.dll 10.0.18362.836Product URL(s):https://www.micr... 2021-2-27 08:0:0 | 阅读: 14 | 收藏 | Advisories on STAR Labs - starlabs.sg mfsrcsnk 00000084 windows 00007ffa oob

(CVE-2021-34503) Windows Media Foundation Type Confusion Vulnerability CVE: CVE-2021-34503Tested Versions:mfsrcsnk.dll 10.0.18362.836Product URL(s):https://www.micr... 2021-2-27 08:0:0 | 阅读: 24 | 收藏 | Advisories on STAR Labs - starlabs.sg mfmp4srcsnk cqtatom windows

(CVE-2021-1758) macOS/iOS CoreText Out-Of-Bounds Read CVE: CVE-2021-1758Tested Versions:macOS Catalina 10.15.4 (19E287)Product URL(s):https://apple... 2021-2-10 08:0:0 | 阅读: 12 | 收藏 | Advisories on STAR Labs - starlabs.sg rfork typelist rol2 harness

(CVE-2021-1790) macOS/iOS CoreText libhvf Out-Of-Bounds Read CVE: CVE-2021-1790Tested Versions:macOS Catalina 10.15.4 (19E287)Product URL(s):https://apple... 2021-2-10 08:0:0 | 阅读: 11 | 收藏 | Advisories on STAR Labs - starlabs.sg lldb unnamed hvf

Chrome 1-Day Hunting - Uncovering and Exploiting CVE-2020-15999 This blog post details the exploitation process for the vulnerability CVE 2020-15999 in Google Chro... 2021-1-9 08:0:0 | 阅读: 28 | 收藏 | Blogs on STAR Labs - starlabs.sg overflow memory chrome websql renderer

Instrumenting Adobe Reader with Frida Frida is an open-source dynamic instrumentation toolkit that has become popular in recent years, and... 2020-11-13 08:0:0 | 阅读: 9 | 收藏 | Blogs on STAR Labs - starlabs.sg escript stalker python esargparse readu32

Analysis & Exploitation of a Recent TP-Link Archer A7 Vulnerability This post provides detailed analysis and an exploit achieving remote code execution for CVE-2020-108... 2020-10-16 08:0:0 | 阅读: 15 | 收藏 | Blogs on STAR Labs - starlabs.sg payload slave recvbuffer tdp tdpdserver

Pwn2Own 2020: Oracle VirtualBox Escape In this post, we will cover the vulnerabilities used at Pwn2Own 2020 for the Oracle VirtualBox escap... 2020-9-25 08:0:0 | 阅读: 9 | 收藏 | Blogs on STAR Labs - starlabs.sg pextra pthis urb pvusb virtualbox

This Font is not Your Type Half a year ago, I found a vulnerability in libFontParser.dylib, whichis a part of CoreGraphics lib... 2020-9-4 08:0:0 | 阅读: 10 | 收藏 | Blogs on STAR Labs - starlabs.sg blend cff2 charstring opentype cff

(CVE-2020-24430) Adobe Acrobat Pro DC FDF.addContact Use-After-Free Vulnerability CVE: CVE-2020-24430Tested Versions:Adobe Reader DC 2020.012.20041Product URL(s):https://adobe... 2020-8-21 08:0:0 | 阅读: 13 | 收藏 | Advisories on STAR Labs - starlabs.sg wchar v35 28605ac0 gcorehft cdecl

ASUSWRT URL Processing Stack Buffer Overflow While processing the URL for any blacklisted XSS list like the script tag in the check_xss_blacklist... 2020-8-7 08:0:0 | 阅读: 13 | 收藏 | Blogs on STAR Labs - starlabs.sg r7 repeats asus vpath a6250

(CVE-2020-13937) Apache Kylin - Unauthenticated Configuration Disclosure CVE: CVE-2020-13937Tested Versions:All versions starting from 2.0.0 up to 2.3.2, all versions sta... 2020-7-17 08:0:0 | 阅读: 18 | 收藏 | Advisories on STAR Labs - starlabs.sg kylin security getconfig scr

Oracle VirtualBox VHWA Use-After-Free Privilege Escalation Vulnerability As part of my month-long internship at STAR Labs, I was introduced to VirtualBox and learnt much abo... 2020-6-26 08:0:0 | 阅读: 15 | 收藏 | Blogs on STAR Labs - starlabs.sg surf vboxvhwacmd pcmd vram

(CVE-2020-0634) Windows CLFS UAF Memory Corruption Vulnerability CVE: CVE-2020-0634Tested Versions:Windows RS2( 2019.01.08) build 7763ntoskrnl.exe file version 1... 2020-6-12 08:0:0 | 阅读: 14 | 收藏 | Advisories on STAR Labs - starlabs.sg ffffd000 fffff800 ffffe000 clfs 000000e9

(CVE-2020-1664) Juniper Junos OS dcd create_debug_data() buffer overflow CVE: CVE-2020-1664Tested Versions:Junos OS 20.1R1.11Product URL(s):https://www.juniper.net/... 2020-6-12 08:0:0 | 阅读: 13 | 收藏 | Advisories on STAR Labs - starlabs.sg dcd attacker v13 maintenance overflow