Whitepaper called Exploiting the otherwise non-exploitable - Windows Kernel-mode GS Cookies subverted.
9cb55c04b174ac68214accb5e07ace84657f40f962aea69afc09f7ac5daa6f55
Whitepaper called GDT and LDT in Windows kernel vulnerability exploit. This paper discusses using 1 or 4 byte write-what-where conditions to convert a custom Data-Segment Descriptor entry in LDT of a process into a Call-Gate (with DPL set to 3 and RPL to 0).
5c8da344b3b6b9b298c6abf88c6abc9b8388ea7855997e8d22f4bdd058f0fb20
Opera version 9.50 beta and FireFox versions 2.0.0.11 suffer from a vulnerability during BMP file handling.
0fd7ba70c6bbc35bddaa4373858635fd6aa10424df74190fbc8037207d7c3efa
SDL_Image versions 1.2.6 and below suffer from a GIF handling buffer overflow vulnerability.
013e44ffbd053ccc714332adb0917f693c76ce4e1a1854c18fcc279af2d8b8e3
Opera is vulnerable to a remote denial of service attack, using specially crafted BMP files, that causes the browser to freeze for a short amount of time (around 4 minutes on fast computer).
93b879e9a06d7e933fad2efbb0ff9f866107dcf04c983da9154afa99bd7a2b12
Magellan Explorer version 3.32 build 305 suffers from a remote directory traversal vulnerability. Proof of concept code included.
e310a478305527fa2aa12b4bb1abf80a9eb24ad2d2f92d8240de3aa598e25bc6
X-Diesel Unreal Commander version 0.92 suffers from a remote directory traversal vulnerability. Proof of concept code included.
5870174e59874a1e138c04a3fec453157f93e9da0d787391dcc503796e5d699d
The Total Commander FTP client versions 7.01 and below suffer from a remote directory traversal vulnerability. Proof of concept code included.
a7ea0b06af33c34252186cbffb41cb9f7c141a2e1b54c2551be1be4462e60615
Blizzard StarCraft Brood War version 1.15.1 suffers from a remote denial of service vulnerability.
32a78f48606c7a8339245472c40865d4197517ce3a37de6dcb1e758a0288ee14
HISPASEC Security Advisory - X-Diesel Unreal Commander version 0.92 suffers from name spoofing and directory traversal vulnerabilities.
4b6405903518d8cc539aa225d0ae78b40266ba8b21b84f35ab602aeb57c85e05
Fileinfo version 2.0.9, the lister plugin for Total Commander, suffers from input validation vulnerabilities. Prior versions may also be affected.
9d82d6a7ac76205b121501b2e861c7404be7d611bcf04e454a41d9906704b47f