192 - A GPU Bug and the World’s Worst Fuzzer Findings A bug was found sort of accidentally in Adreno/KGSL GPU for Android devices. The post covers a... 2023-3-2 08:48:45 | 阅读: 23 | 收藏 | DAY[0] - dayzerosec.com mapped kgsl buffers memory userspace

191 - Param Pollution in Golang, OpenEMR, and CRLF Injection A couple interesting issues in OpenEMR leading to unauthenticated... 2023-3-1 04:52:8 | 阅读: 26 | 收藏 | DAY[0] - dayzerosec.com sequelize payload feathers injection bypass

190 - Fuzzing cURL, Netatalk, and an Emulator Escape 22 February 2023Show Notes 00:00:27Spot the Vuln - Ins... 2023-2-23 08:49:47 | 阅读: 25 | 收藏 | DAY[0] - dayzerosec.com memory joke overflows escaping

189 - Compromising Azure, Password Verification Fails, and Readline Crime Some malformed hashes will “validate” with any value compared using password_verify. This is du... 2023-2-22 04:49:17 | 阅读: 26 | 收藏 | DAY[0] - dayzerosec.com readline malformed haproxy finger encountered

188 - Rusty Kernel Bugs, mast1c0re, and OpenSSH A use-after-free (UAF) yielding double free in OpenSSH that’s hittable pre-authentication. The... 2023-2-16 07:45:0 | 阅读: 33 | 收藏 | DAY[0] - dayzerosec.com kex ps2 vuln openssh overflow

187 - Top 2022 Web Hacking Techniques and a Binance Bug A small bug in processing/validating the entries in the Merkel tree resulting in the theft of 2... 2023-2-15 04:45:51 | 阅读: 27 | 收藏 | DAY[0] - dayzerosec.com bsc windows remote separators tackle

186 - An XNU Exploit and a Chrome Heap Overflow A 19-year-old bug in XNUs Data Link Interface Layer o... 2023-2-9 08:45:59 | 阅读: 30 | 收藏 | DAY[0] - dayzerosec.com ifnet texture addrs comparing infos

185 - Facebook Account Takeovers and a vBulletin RCE A bit of research on leaking access tokens from OAuth2/OIDC flows... 2023-2-8 04:45:9 | 阅读: 47 | 收藏 | DAY[0] - dayzerosec.com attacker compat getprotocol facebook victim

184 - KASAN comes to Windows and Shuffling ROP Gadgets Home Blog Podcast Vulns About Us Contact... 2023-2-2 08:45:3 | 阅读: 31 | 收藏 | DAY[0] - dayzerosec.com twitch enhancement pwning loader

183 - CSS Injection and a Google Cloud Project Takeover Bug Fun little CSS injection turned full-read SSRF thanks to an (imo)... 2023-2-1 04:45:26 | 阅读: 47 | 收藏 | DAY[0] - dayzerosec.com injection ssrf inject proxy kayak

182 - Exploiting Null Derefs and Windows Type COM-fusion The last time we covered a “how to exploit a null-deref in... 2023-1-26 08:45:49 | 阅读: 27 | 收藏 | DAY[0] - dayzerosec.com overflow memory oops overflows network

181 - Cloud Bugs and More Vulns in Galaxy App Store Cool, yet simple finding from the DataDog security team where cal... 2023-1-25 04:55:32 | 阅读: 28 | 收藏 | DAY[0] - dayzerosec.com ssh username attacker cloud samsung

180 - An iPod Nano Bug, XNU Vuln, and a WebKit UAF A trivial out of bounds access in the iPod nano 3rd-5th generation’s USB stack in the bootRO... 2023-1-19 08:45:16 | 阅读: 25 | 收藏 | DAY[0] - dayzerosec.com unaligned attacker aligned memory

179 - Client-Side Path Traversal and Hiding Your Entitlement(s) Some funny vulns in an undisclosed forum’s “teams” feature where... 2023-1-18 04:45:8 | 阅读: 31 | 收藏 | DAY[0] - dayzerosec.com parcel memory parcels lazyvalue

178 - Attacking Bhyves and a Kernel UAF An out-of-bounds read/write in FreeBSD’s bhyve hypervisor.... 2023-1-12 08:45:14 | 阅读: 27 | 收藏 | DAY[0] - dayzerosec.com dynset e82545 descriptors infoleak netfilter

177 - Web Hackers vs. Cars and a Facebook Account Takeover A total of either issues impacting various companies in the automotive industry, mix of issues... 2023-1-11 04:45:44 | 阅读: 43 | 收藏 | DAY[0] - dayzerosec.com sso totp username mercedes injection

176 - JS Type Confusions and Bringing Back Stack Attacks A JIT optimization based type confusion in jscript9. The ro... 2022-12-15 08:45:19 | 阅读: 37 | 收藏 | DAY[0] - dayzerosec.com int32array mntn smc memory anon

175 - Pwn2Own Bugs and WAF Bypasses Two vulns in Netgear RAX30 routers that were patched 2 days... 2022-12-14 04:45:32 | 阅读: 47 | 收藏 | DAY[0] - dayzerosec.com injection bypass integers attacker cloud

174 - A Huawei Hypervisor Vuln and More Memory Safety An interesting vulnerability in Huawei’s security hypervisor which Huawei devices use to protec... 2022-12-8 08:45:21 | 阅读: 15 | 收藏 | DAY[0] - dayzerosec.com hypervisor memory hv pagetable allocator

173 - Remotely Controlling Hyundai and a League of Legends XSS The core vulnerability here is a case where a DOM clobberin... 2022-12-7 07:13:3 | 阅读: 32 | 收藏 | DAY[0] - dayzerosec.com attacker easyxdm remote referrer loaded