The April 2025 Security Update Review

April 08, 2025 | Dustin Childs CONTINUE READING

Automating VMware RPC Request Sniffing

Blog post

Automating VMware RPC Request Sniffing

January 19, 2018
VMware, Research

A Matching Pair of Use-After-Free Bugs in Chakra asm.js

Blog post

A Matching Pair of Use-After-Free Bugs in Chakra asm.js

December 22, 2017
JavaScript, Chakra, Research, Top 5

VMware’s Launch escape SYSTEM

Blog post

VMware’s Launch escape SYSTEM

December 21, 2017
VMware, Research, Top 5

Invariantly Exploitable Input: An Apple Safari Bug Worth Revisiting

Blog post

Invariantly Exploitable Input: An Apple Safari Bug Worth Revisiting

December 20, 2017
Apple, Safari, Research, Top 5

Apache Groovy Deserialization: A Cunning Exploit Chain to Bypass a Patch

Blog post

Apache Groovy Deserialization: A Cunning Exploit Chain to Bypass a Patch

December 19, 2017
Apache, Research, Top 5

Reading Backwards – Controlling an Integer Underflow in Adobe Reader

Blog post

Reading Backwards – Controlling an Integer Underflow in Adobe Reader

December 18, 2017
Adobe, Top 5, Research

Exploiting Untrusted Objects through Deserialization: Analyzing 1 of 100+ HPE Bug Submissions

Blog post

Exploiting Untrusted Objects through Deserialization: Analyzing 1 of 100+ HPE Bug Submissions

December 01, 2017
HPE, Research, Exploit

The Results – Mobile Pwn2Own 2017 Day Two

Blog post

The Results – Mobile Pwn2Own 2017 Day Two

November 02, 2017
Pwn2Own, MP2O, Apple, Huawei, Samsung

Mobile Pwn2Own 2017 – Day Two Schedule and Results

Blog post

Mobile Pwn2Own 2017 – Day Two Schedule and Results

November 01, 2017
Pwn2Own, MP2O, Apple, Huawei, Google, Samsung

The Results – Mobile Pwn2Own Day One

Blog post

The Results – Mobile Pwn2Own Day One

November 01, 2017
Pwn2Own, MP2O, Apple, Samsung, Google, Huawei