Windows Defender mpengine remote code execution [CVE-2021-1647]
Heap overflow in Windows Defender (mpengine.dll).Overflow happens while unpacking an ASProtect packed executable...
Vulnerabilities tagged "binary"
Porting a V8 n-day to Tesla Model 3 [CVE-2020-6418]
Porting of a V8 nday to Tesla Model 3.The vuln is older (from 2020) and is a turbofan optimizer based bug...
OOB Write in Desktop WIndow Manager (DirectComposition) [CVE-2021-28310]
Two vulns related to properties on a DirectComposition buffer.Adding a new property it adds it, then checks some values and potentially returns an error before finalizing, but the property gets added...
Null Dereference in tcpip.sys Leading to Single Packet Denial of Service [CVE-2021-24086]
**tl;dr** Cleverly crafting a packet with a large header+options length could cause a null dereference. The net buffer would be created with DataSize=uint16_t(length), but it would attempt to read with size=length (no truncation), which would result in an error case and a null return.