HTDark | Underground Hacking Forum and Cybersecurity Community
  • Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.

confusion

  1. 1

    Exploits JavaScriptCore GetterSetter Type Confusion

    JavaScriptCore (JSC) GetterSetter suffers from a type confusion vulnerability during DFG compilation. View the full article
  2. 1

    Exploits V8 Map Migration Type Confusion

    V8 map migration does not respect element kind, leading to a type confusion vulnerability. View the full article
  3. 1

    Exploits Thunderbird libical Type Confusion

    A type confusion has been identified in the Thunderbird email client. The issue is present in the libical implementation, which was forked from upstream libical version 0.47. The issue can be triggered remotely, when an attacker sends an specially crafted calendar attachment and does not require...
  4. 1

    Exploits Safari Webkit Proxy Object Type Confusion

    This Metasploit module exploits a type confusion bug in the Javascript Proxy object in WebKit. The DFG JIT does not take into account that, through the use of a Proxy, it is possible to run arbitrary JS code during the execution of a CreateThis operation. This makes it possible to change the...
  5. 1

    Exploits Chrome JSPromise::TriggerPromiseReactions Type Confusion

    Chrome suffers from a type confusion vulnerability in JSPromise::TriggerPromiseReactions. View the full article
  6. 1

    Exploits Chrome V8TrustedTypePolicyOptions::ToImpl Type Confusion

    Chrome suffers from a type confusion vulnerability in V8TrustedTypePolicyOptions::ToImpl. View the full article
  7. 1

    Exploits SpiderMonkey IonMonkey Type Confusion

    A bug in IonMonkey leaves type inference information inconsistent, which in turn allows the compilation of JITed functions that cause type confusions between arbitrary objects. View the full article
  8. 1

    Exploits SpiderMonkey IonMonkey Type Confusion

    A bug in IonMonkeys type inference system when JIT compiling and entering a constructor function via on-stack replacement (OSR) allows the compilation of JITed functions that cause type confusions between arbitrary objects. View the full article
  9. 1

    Exploits Microsoft Edge Chakra 1.11.4 Type Confusion

    Microsoft Edge Chakra version 1.11.4 read permission via type confusion proof of concept exploit. View the full article
  10. 1

    Exploits Adobe Flash Player DeleteRangeTimelineOperation Type Confusion

    This Metasploit module exploits a type confusion on Adobe Flash Player, which was originally found being successfully exploited in the wild. This module has been tested successfully on: macOS Sierra 10.12.3, Safari and Adobe Flash Player 21.0.0.182, Firefox and Adobe Flash Player 21.0.0.182...
  11. dEEpEst

    Microsoft Edge Chakra JIT NewScObjectNoCtor / InitProto Type Confusion [CVE-2019-0567]

    Hidden content
    • dEEpEst
    • Thread
    • chakra confusion cve-2019-0567 edge exploit initproto jit microsoft newscobjectnoctor type
    • Replies: 0
    • Forum: Exploit Development & Bugs
  12. dEEpEst

    Microsoft Edge Chakra InlineArrayPush Type Confusion [CVE-2018-8617]

    Hidden content
  13. 1

    Exploits Microsoft Edge Chakra InlineArrayPush Type Confusion

    Microsoft Edge suffers from a Chakra related type confusion vulnerability in InlineArrayPush. View the full article
  14. 1

    Exploits Microsoft Edge Chakra JIT NewScObjectNoCtor / InitProto Type Confusion

    Microsoft Edge has an issue where NewScObjectNoCtor and InitProto opcodes are treated as having no side effects, but actually they can have via the SetIsPrototype method of the type handler that can cause transition to a new type. This can lead to type confusion in the JITed code. View the full...
  15. 1

    Exploits Safari Proxy Object Type Confusion

    This Metasploit module exploits a type confusion bug in the Javascript Proxy object in WebKit. The DFG JIT does not take into account that, through the use of a Proxy, it is possible to run arbitrary JS code during the execution of a CreateThis operation. This makes it possible to change the...
  16. 1

    Exploits WebKit JIT ByteCodeParser::handleIntrinsicCall Type Confusion

    WebKit JIT has type confusion bugs in ByteCodeParser::handleIntrinsicCall. View the full article
  17. 1

    Exploits WebKit JSC JIT JSPropertyNameEnumerator Type Confusion

    When a for-in loop is executed, a JSPropertyNameEnumerator object is created at the beginning and used to store the information of the input object to the for-in loop. Inside the loop, the structure ID of the "this" object of every get_by_id expression taking the loop variable as the index is...
  18. 1

    Exploits Microsoft Edge Chakra OP_Memset Type Confusion

    Microsoft Edge suffers from a Chakra OP_Memset type confusion vulnerability. View the full article
  19. 1

    Exploits Microsoft Edge Chakra JIT Type Confusion Bug

    Microsoft Edge suffers from a Chakra JIT type confusion bug. View the full article
  20. 1

    Exploits Microsoft Edge Chakra PathTypeHandlerBase::SetAttributesHelper Type Confusion

    Microsoft Edge Chakra suffers from a type confusion vulnerability with PathTypeHandlerBase::SetAttributesHelper. View the full article

confusion

confusion

Share this tag

Back
Top