unexploitable crash for the record -> oart!Ordinal3646+0x4ba: movzx eax,word ptr [esi+2] ds:0023:10ee9000=????
Looks like an out-of-bounds read to me. You sure about it not being exploitable?
-
-
Rejected by ZDI. MSRC have decided not to fix it.
#wontfix Surely exploitable but reproduced only in 2007 -
Same bug changing bytes in the poc: https://twitter.com/j00sean/status/797135923284705280 … New info sent to MS but won't be fixed anyway. v2007'll die soon
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.