#DailyBug #MSIE9 MSHTML CAttrArray use-after-free
Details and repro in my blogpost athttp://blog.skylined.nl/20161101001.html …
-
-
Replying to @berendjanwever
Hey,
@corelanc0d3r: can you confirm this is the same bug you got credit for? Congratulations on beating me to the punch! :)1 reply 0 retweets 0 likes -
Replying to @berendjanwever
heya, what bug/credit are you referring to (so I can check) ;-)
3 replies 0 retweets 0 likes -
Replying to @corelanc0d3r
Sorry if I wasn't clear on that :) I was referring to the bug described here:http://blog.skylined.nl/20161101001.html …
1 reply 0 retweets 0 likes -
-
Replying to @berendjanwever
ah yes, need to check my notes to be sure, but looks similar indeed. Damn bug collisions ;-)
1 reply 0 retweets 1 like -
Replying to @corelanc0d3r @berendjanwever
Is this due to you guys using similar processes for finding bugs or is it a "vulns are sparse" moment?
1 reply 0 retweets 0 likes -
Replying to @mkolsek @corelanc0d3r
There's bound to be a bit of both involved every time bugs collide and it's not possible to quantify how much of each
1 reply 0 retweets 0 likes -
Replying to @berendjanwever @corelanc0d3r
It would provide useful input if you both revealed how you found this same bug :) AFL, manual, custom fuzzer?
1 reply 0 retweets 1 like
AFL on MSIE DOM in 2014 is not likely and manually checking DOM APIs is not a realistic approach, so guess what :)
-
-
Replying to @berendjanwever @corelanc0d3r
Well if you guys happened to have built a similar custom fuzzer, agree to use opposite order of testing :)
0 replies 0 retweets 0 likesThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.