Damian Put
Contact: pucik@gazeta.pl

News:
14.05.2006 Talk at Confidence 2006 - "Hacking Linux Kernel Network Stack"


Security research:
07.12.2011RealNetworks RealPlayer RV20 Decoding Remote Code Execution Vulnerability
28.11.2011RealNetworks RealPlayer IVR MLTI Chunk Length Parsing Remote Code Execution Vulnerability
28.11.2011RealNetworks RealPlayer RV30 Uninitialized Index Value Remote Code Execution Vulnerability
28.11.2011RealNetworks RealPlayer Invalid Codec Name Remote Code Execution Vulnerability
28.11.2011RealNetworks RealPlayer RV10 Sample Height Parsing Remote Code Execution Vulnerability
28.11.2011RealNetworks RealPlayer genr Sample Size Parsing Remote Code Execution Vulnerability
28.11.2011RealNetworks RealPlayer ATRC Code Data Parsing Remote Code Execution Vulnerability
26.10.2011Apple QuickTime H264 Stream frame_cropping Remote Code Execution Vulnerability
18.10.2011Apple QuickTime FlashPix JPEG Tables Selector Remote Code Execution Vulnerability
31.08.2011Apple QuickTime 3g2 'mp4v' atom size Remote Code Execution Vulnerability
29.06.2011Apple Quicktime Apple Lossless Audio Codec Parsing Remote Code Execution Vulnerability
14.06.2011Microsoft Internet Explorer DOM Modification Race Remote Code Execution Vulnerability
10.12.2010RealNetworks RealPlayer Cook Codec Initialization Remote Code Execution Vulnerability
10.12.2010RealNetworks RealPlayer Advanced Audio Coding Remote Code Execution Vulnerability
07.12.2010Apple QuickTime PICT File PackBits Remote Code Execution Vulnerability
07.12.2010Apple QuickTime FPX Subimage Count Out-of-bounds Counter Remote Code Execution Vulnerability
10.11.2010Apple QuickTime JP2 SIZ Chunk Uninitialized Object Remote Code Execution Vulnerability
10.11.2010Apple QuickTime rec Chunk Parsing Remote Code Execution Vulnerability
24.08.2010Adobe Shockwave Director rcsL Chunk Remote Code Execution Vulnerability
24.08.2010Adobe Shockwave Director PAMI Chunk Remote Code Execution Vulnerability
21.06.2010Adobe Flash Player LocalConnection Remote Code Execution Vulnerability
16.06.2010Adobe Flash Player Multiple Atom MP4 Parsing Remote Code Execution Vulnerability
06.04.2010Apple QuickTime Pict BkPixPat Remote Code Execution Vulnerability
02.04.2010Apple QuickTime MJPEG Sample Dimensions Remote Code Execution Vulnerability
02.04.2010Apple QuickTime H.263 PictureHeader Remote Code Execution Vulnerability
09.12.2009Adobe Flash Player ActionScript Exception Handler Integer Overflow Vulnerability
10.09.2009Apple QuickTime FlashPix Sector Size Overflow Vulnerability
10.09.2009Apple QuickTime H.264 Nal Unit Length Heap Overflow Vulnerability
02.06.2009Apple QuickTime Jpeg2000 Marker Size Heap Overflow Vulnerability
02.06.2009Apple QuickTime CRGN Atom Parsing Heap Buffer Overflow Vulnerability
02.06.2009Apple QuickTime Packed-bit Decoding Heap Overflow Vulnerability
13.05.2009Apple QuickTime PICT Unspecified Tag Heap Overflow Vulnerability
04.12.2008Trillian AIM Plugin Malformed XML Tag Heap Overflow Vulnerability
04.12.2008Trillian IMG SRC ID Memory Corruption Vulnerability
04.12.2008Trillian AIM IMG Tag Parsing Stack Overflow Vulnerability
12.08.2008Microsoft Office WPG Image File Heap Buffer Overflow Vulnerability
12.08.2008Microsoft Windows Graphics Rendering Engine PICT Heap Corruption Vulnerability
09.06.2008ClamAV Petite File Processing DoS
19.05.2008CA BrightStor ARCserve Backup caloggerd Arbitrary File Writing Vulnerability
19.05.2008CA BrightStor ARCserve Backup XDR Parsing Buffer Overflow Vulnerability
14.04.2008ClamAV libclamav PE WWPack Heap Overflow Vulnerability
14.04.2008ClamAV libclamav PeSpin Heap Overflow Vulnerability
12.02.2008Microsoft Office Works Converter Heap Overflow Vulnerability
16.02.2007Trend Micro ServerProtect Web Interface Authorization Bypass Vulnerability
08.12.2006Sophos Antivirus CHM File Heap Overflow Vulnerability
08.12.2006Multiple Vendor Antivirus RAR File Denial of Service Vulnerability
15.10.2006ClamAV rebuildpe Heap Overflow Vulnerability
15.10.2006ClamAV CHM Chunk Name Length DoS Vulnerability
14.08.2006ImageMagick ReadSGIImage() Heap Overflow
08.08.2006ClamAV Win32-UPX Heap Overflow #2 (Critical)
05.04.2006ClamAV Win32-UPX Heap Overflow (not default configuration)
20.12.2005Blender BlenLoader Integer Overflow
25.04.2005ImageMagick - ReadPNMFile() Heap Overflow