Categories: All - security - vulnerabilities - browsers - javascript

by Huy na 11 years ago

680

Browser Fuzzing

The text discusses the concept of browser fuzzing, which is a critical technique in identifying security vulnerabilities within web browsers. It highlights various common issues such as type confusion, integer overflow, and memory-related errors like double-free and use-after-free.

Browser Fuzzing

Browser Fuzzing

Nhung project ve fuzzing

web browser

Kien thuc co ban ve loi pho bien

Tim hieu nhung loi nay thong qua viec

+ Tim cac vi du va doc hieu chung

+ Khai thac thu cac vi du do

Double free
Use After free
Type Confusion
http://www.abysssec.com/blog/2011/04/18/exploiting-adobe-flash-player-on-windows-7/
Integer Overflow
http://www.abysssec.com/blog/2011/07/18/analysis-of-cve-2011-0041-vulnerability-in-gdi/

thac mac ve javascript

Reference

writing a Browser fuzzer !!!
Taking Browsers Fuzzing To The Next (DOM) Level
https://deepsec.net/docs/Slides/2012/DeepSec_2012_Rosario_Valotta_-_Taking_Browsers_Fuzzing_to_the_next_(DOM)_Level.pdf
http://www.slideshare.net/null0x00/introduction-to-browser-fuzzing