Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @hackyzh
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @hackyzh
-
Zhihua Yao proslijedio/la je Tweet
CVE-2019-1406 : Microsoft Jet Engine ColumnLvText Type Confusion https://starlabs.sg/advisories/19-1406/ … CVE-2019-1250 : Microsoft Jet database Record::IsNull Memory Corruption https://starlabs.sg/advisories/19-1250/ … Found by
@Puzzorsj &@R00tkitSMMHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I don't know why there two kinds of information disclosure,but there is no bounty for critical of information disclosure.

@n0x08@msftsecresponsepic.twitter.com/mBnZM5LC28
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I got some excel crashes on my fuzz interface, I'm happy, but it didn't save the results
WTF #EXCELHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I hope to dig out browser vulnerabilities and write exploits that can be used, but the strength does not allow.
https://twitter.com/msftsecresponse/status/1217507097127964672 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Zhihua Yao proslijedio/la je Tweet
Our researchers (
@jinmo123 and@setuid0x0_) successfully reproduced CVE-2020-0601, which is the crypto bug in Microsoft Windows reported by NSA!!pic.twitter.com/5yVLiXAJE7
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I really hate null pointers, you feel happy when you find that your fuzzer has results, and then when you find null pointers, you feel fucked.
#Excelpic.twitter.com/k1zUMaIV7M
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
The result I fuzzed, Is this stack buffer overflow?
#bugbounty#officepic.twitter.com/Mf3aTbYcP3
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
oneplus src has a bad experience, I submitted it on the 20th, and today they replied that they already knew the problem.Although this vulnerability I quickly discovered.

#bugbountypic.twitter.com/h5FkysmoKk
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
When I searched for attack surface fuzz in excel, I found this.Interesting, but currently neither of these vulnerabilities can be exploited, it is a pity
#bugbounty#excel#xsspic.twitter.com/QP25DzAnP0
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
At first I thought it was a heap overflow, so does anyone recognize what the vulnerability is?

#bugbounty#Windowspic.twitter.com/QYSCjTeYeH
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
This seems to be an out-of-bounds vulnerability. I'm not very good at exploit develop.Can someone give some tutorials on how to develop exploit for GDI vulnerability? Today is unlucky, my alien host is stuck on the login interface when entering the Windows 10 system
#bugbountypic.twitter.com/pD37Tph9wS
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Does anyone know that the microsoft user state vulnerability has a bounty?like this https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1419 …
#bugbounty#MSFT#WindowsInsidersHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
I found a open redirect vuln,but can't convert to xss.Anyone else could bypass browser limit?

#bugbouty#XSSpic.twitter.com/l7EDAaPHym
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Today I have received the swag,thanks msrc.
@msftsecresponse
But it seems a bit ugly.Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Does anyone know which cloud vendor this belongs to, can it be subdomain takeover?
#BugBountypic.twitter.com/VQE3eosNlq
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I submitted 3 xss vulnerabilities about dynamic 365 to Microsoft, but only one got $3000, and the other two said that due to permissions, it was normal design.

#bugbountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I found that this vulnerability has been fixed and cannot be reproduced.This is too fast. I want to try other things to make this report effective. This feeling is really not very good.
#msrc#bugbounty@msftsecresponsepic.twitter.com/dwoXwopI3r
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
