A Case Study of an Incorrect Optimization in V8
A presentation showing how it is possible for incorrect optimizations in the JIT (Just-In-Time) engine to lead to out of bound read and write
Blog
"Knowledge shared = Knowledge Squared"
Command Injection in Archer A7 (CVE-2020-10882)
This post provides detailed analysis and an exploit achieving remote code execution for CVE-2020-10882
ASUSWRT URL Processing Stack Buffer Overflow
While processing the URL for any blacklisted XSS list like the script tag in the check_xss_blacklist function, a stack buffer overflow is possible by extending the length of the URL when accessing the web interface of the ASUS Router