Fakhri Zulkifli Interested in RE and vulnerability research.

Windows GDI CreateDIBitmap - Information Disclosure

An info-leak in Windows graphics device interface (GDI).

Windows GDI SetDIBitsToDevice - Information Disclosure

An info-leak in Windows graphics device interface (GDI).

Foxit Reader 10 - NULL Pointer Dereference

A trivial pdf reader pointer reference.

Windows GDI SetEnhMetaFileBits - Information Disclosure

An info-leak in Windows graphics device interface (GDI).

Suricata - ReadErfFile Stack-based Buffer Overflow

A trivial local stack-based overflow.

Libemu - emu_shellcode_test Divide By Zero

Dionaea remote denial of service.

IPv6 Local Neighbor Discovery Using Router Advertisement

A coincidence.

BSD Hypervisor - pci_fbuf NULL Pointer Dereference

A guest to host denial of service.

[CVE-2019-13614] tddp CMD_SET_CONFIG_COUNTRY Stack-based Buffer Overflow

A debug protocol overflow.

[CVE-2019-13613] tddp CMD_FTEST_CONFIG Stack-based Buffer Overflow

A debug protocol overflow.

BSD Hypervisor - Theoretical Stack-based Buffer Overflow

A trivial unchecked command line length.

[CVE-2019-12929] QEMU Guest Agent guest_exec Remote Command Execution

Unsanitized command execution.

[CVE-2019-12928] QEMU Machine Protocol Migrate Remote Command Execution

Unsanitized command execution.

[CVE-2019-5008] QEMU sun4u NULL Pointer Dereference

A guest to host denial of service.

[CVE-2018-16517] Netwide Assembler (NASM) 2.14rc15 NULL Pointer Dereference

A bug in assembly instruction parser.

[CVE-2018-15887] ASUS DSL-N12E_C1 1.1.2.3_345 - Remote Command Execution

A post-authenticated remote command execution.

[CVE-2018-13458] Nagios Core qh_core NULL Pointer Dereference

A local service denial of service.

[CVE-2018-13457] Nagios Core qh_echo NULL Pointer Dereference

A local service denial of service.

[CVE-2018-13441] Nagios Core qh_help NULL Pointer Dereference

A local service denial of service.

SIPp 3.6 - Stack-based Buffer Overflow (PoC)

A trivial stack-based buffer overflow

[CVE-2018-12453] Redis 5.0 Type Confusion

A post-authenticated denial of service.

[CVE-2018-12326] Redis-cli Stack-based Buffer Overflow

A trivial stack-based buffer overflow

[CVE-2018-12617] QEMU Guest Agent Integer Overflow

A trivial integer overflow.

[CVE-2018-12327] ntpq and ntpdc 4.2.8p11 Stack-based Buffer Overflow

A trivial stack-based buffer overflow.