Since November I have been releasing details on all vulnerabilities I found that I have not released before. This is the 36th entry in the series. This information is available in more detail on my blog at http://ift.tt/2hPspaE. There you can find a repro that triggered this issue in addition to the information below, as well as a Proof-of-Concept exploit that attempts to prove exploitability. If you find these releases useful, and would like to help me make time to continue releasing this kind of information, you can make a donation in bitcoin to 183yyxa9s1s1f7JBpPHPmzQ346y91Rx5DX. Follow me on http://twitter.com/berendjanwever for daily browser bugs. MSIE 11 MSHTML CSpliceTreeEngine::RemoveSplice use-after-free ============================================================= (MS14-035, CVE-2014-1785) Synopsis
Source: Gmail -> IFTTT-> Blogger
No comments:
Post a Comment