2 posts in archive

Analyzing an Out-of-Bounds read in a TTF font file

17 Dec 2019 by Luc - Technical - OOB Read Overflow Reverse Engineering CVE Demo REVEN

In this post we will analyze some specific points from the proof of concept for CVE-2019-1244, that has been found by Mateusz @j00ru Jurczyk. This vulnerability is a user-mode out-of-bounds read in Microsoft DirectWrite function dwrite.dll!sfac_GetSbitBitmap while processing a TTF font file. Our starting point is a first recording of...

REVEN 2.3: 32-bit symbols, Current Process Information, and more

05 Dec 2019 by Louis - Technical - REVEN Releases Announcement OSSI

Tetrane is happy to announce the recent release of REVEN 2.3. REVEN is an automated Reverse Engineering Platform designed to go x10 faster & x10 deeper using Timeless Analysis. Technically, REVEN captures a time slice of a full system execution (CPU, Memory, Hardware events) to provide unique analysis features that...