CVE-2025-4919: Corruption via Math Space in Mozilla Firefox

July 15, 2025 | Hossein Lotfi CONTINUE READING

ZDI-18-1372 – The Elegant Bypass

Blog post

ZDI-18-1372 – The Elegant Bypass

December 21, 2018
Top 5, Adobe, Research

Really Check Errors: Pointing to the Object of your Desire

Blog post

Really Check Errors: Pointing to the Object of your Desire

December 20, 2018
Top 5, Apple, Research

An Insincere Form of Flattery: Impersonating Users on Microsoft Exchange

Blog post

An Insincere Form of Flattery: Impersonating Users on Microsoft Exchange

December 19, 2018
Top 5, Exchange, Research

Top 5 Day Two: Electron Boogaloo - A case for technodiversity

Blog post

Top 5 Day Two: Electron Boogaloo - A case for technodiversity

December 18, 2018
Top 5, Electron, Research

Seeing Double: Exploiting a Blind Spot in MemGC

Blog post

Seeing Double: Exploiting a Blind Spot in MemGC

December 17, 2018
Microsoft, Top 5, Research

When one corruption is not enough: Analyzing an Adobe Pwn2Own Exploit

Blog post

When one corruption is not enough: Analyzing an Adobe Pwn2Own Exploit

December 12, 2018
Adobe, Research, Pwn2Own

DirectX to the Kernel

Blog post

DirectX to the Kernel

December 04, 2018
Microsoft, GDI+, Research

Updates and New Targets Available in the Targeted Incentive Program

Blog post

Updates and New Targets Available in the Targeted Incentive Program

November 07, 2018
TIP, Program News, Research

Preventative Patching Produces Pwn2Own Participant’s Panic

Blog post

Preventative Patching Produces Pwn2Own Participant’s Panic

October 31, 2018
Webkit, JIT, Research

CVE-2018-4338: Triggering an Information Disclosure on macOS Through a Broadcom AirPort Kext

Blog post

CVE-2018-4338: Triggering an Information Disclosure on macOS Through a Broadcom AirPort Kext

October 24, 2018
macOS, Apple, Research