Reported Vulnerabilities

Here is a list with all the vulnerabilities I've been submitted since 2014:

CVE Description Year
CVE-2020-1530 Windows Remote Access Elevation of Privilege Vulnerability 2020
CVE-2020-0744 Windows GDI Information Disclosure Vulnerability 2020
CVE-2019-1311 Microsoft Windows Imaging API Remote Code Execution Vulnerability 2019
CVE-2019-12874 VLC double free vulnerability at zlib_decompress_extra, blog post here 2019
CVE-2018-8472 Microsoft GDI+ MRBDIB::vInit Out-Of-Bounds read, full write up here 2018
CVE-2017-11816 Microsoft GDI+ MRBDIB::vInit Out-Of-Bounds read 2017
CVE-2017-0190 Microsoft GDI+ MRBDIB::vInit memcpy() unallocated memory access 2017
CVE-2017-0073 Microsoft GDI+ WmfEnumState::DIBBitBlt Heap based Out of bounds Read 2017
CVE-2014-9705 PHP heap buffer overflow in enchant_broker_request_dict() 2014
CVE-2014-3707 libcurl duphandle read out of bounds 2014
CVE-2014-3669 PHP Integer overflow in unserialize() (32-bits only) 2014
CVE-2014-3668 PHP Global buffer overflow in mkgmtime() function 2014
N/A Mozilla Firefox Use-after-poison in nsFloatManager::GetFlowArea (with floats, multicol, and huge width) 2015
N/A libwebm Null pointer dereference when parsing EBMLHeader 2015