Vulnerabilities

CVE-2013-2554

by Fred · 11/03/2013

Unspecified vulnerability in Microsoft Windows 7 allows attackers to bypass the ASLR and DEP protection mechanisms via unknown vectors, as demonstrated against Firefox by VUPEN during a Pwn2Own competition at CanSecWest 2013, a different vulnerability than CVE-2013-0787.

Date published : 2013-03-11

http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/Pwn2Own-2013/ba-p/5981157

@VUPEN pwned Mozilla Firefox using a UaF plus a new Windows 7 ASLR/DEP bypass technique then pwned Oracle Java with a heap overflow #Pwn2Own

— Trend Zero Day Initiative (@thezdi) March 7, 2013

Similar

Tags: Cybersecurity Alert