1 post in archive

Analyzing CVE-2020-15999 with REVEN: Buffer-overflow in libpng in Chrome

15 Jul 2021 by Quentin - Technical - Reverse Engineering REVEN Buffer overflow Taint

In this article, we will present a step-by-step analysis of an exploit for CVE-2020-15999 using REVEN. CVE-2020-15999 is a heap buffer overflow in Freetype allowing a remote attacker to potentially exploit heap corruption via a crafted HTML page. In the process, we will show how REVEN’s timeless features such as...