alset0326 issues

Repositories
Issues
Comments

Results 2 issues of


                                            alset0326

CVE-2015-6764: Why can use g_textobj_pointer to get textobj_elements_pointer?

In CVE-2015-6764 exploit, function `leak_textobj_elements_pointer()` can be used to get the `textobj_elements_pointer`. But why does it work? I figure out that `g_textobj_pointer` stored in the second `InternalField` of `JSObject`. What...

Where to find afl patchs and kernel patchs?

May I ask where to find the afl patchs and the kernel patchs?