memory-safety

3 articles
Sort: New Top Best
clear filter
bug-bounty621 facebook431 xss316 google103 rce101 csrf60 microsoft59 web354 account-takeover53 writeup50 apple42 sqli41 cve35 ssrf34 exploit33 dos31 privilege-escalation28 defi28 cloudflare27 smart-contract-vulnerability25 idor24 subdomain-takeover24 ethereum23 clickjacking23 smart-contract23 vulnerability-disclosure21 access-control21 auth-bypass19 malware19 remote-code-execution18 lfi17 cors16 race-condition15 cloud15 reverse-engineering14 authentication-bypass14 solidity14 oauth12 browser12 info-disclosure12 aws12 sql-injection11 delegatecall11 denial-of-service11 phishing11 web-application-security10 vulnerability9 buffer-overflow9 web-security9 token-theft9
0
Nomad
vulnerability

A low-severity bug in the TypedMemView library's isValid function was caused by incorrect use of the bitwise NOT instruction instead of the ISZERO instruction in Yul assembly, causing the function to always return true regardless of whether memory bounds were valid. The bug was responsibly disclosed to Nomad, patched by replacing 'not' with 'iszero', and publicly documented.

yul solidity memory-safety bitwise-operations evm bug-disclosure instruction-semantics smart-contract-vulnerability
TypedMemView Nomad Nikita Stupin Immunefi Center for Contemplative Research summa-tx/memview-sol
nikitastupin.com · Nikita Stupin · 4 hours ago · details
0
How Buffer Overflow Attacks Work
tutorial

This article explains how buffer overflow vulnerabilities work, demonstrating how attackers craft malicious input to overwrite stack memory, particularly return addresses, to execute arbitrary code. It covers the mechanics of stack buffer overflows, practical examples in C, and discusses modern OS-level and compiler-based prevention techniques like DEP, ASLR, and stack canaries.

buffer-overflow memory-safety stack-overflow arbitrary-code-execution vulnerability-explanation c-programming shellcode memory-protection exploit-technique address-space-layout-randomization data-execution-prevention stack-canary return-address-overwrite
Invicti Piotr Sobolewski StackGuard Linux Microsoft Windows macOS
netsparker.com · devanshbatham/Awesome-Bugbounty-Writeups · 4 hours ago · details
0
WHAT IS A BUFFER OVERFLOW? LEARN ABOUT BUFFER OVERRUN VULNERABILITIES, EXPLOITS & ATTACKS
educational

An educational guide explaining buffer overflow and buffer overrun vulnerabilities, their exploitation methods, and attacks, as part of Veracode's application security resource hub covering AppSec concepts and best practices.

buffer-overflow buffer-overrun memory-safety vulnerability exploit application-security appsec educational
Veracode OWASP
veracode.com · devanshbatham/Awesome-Bugbounty-Writeups · 4 hours ago · details