The following is a rough listing of bugs I’ve identified. Please note these issues are listed by the date they were report and not by the date they were addressed.
- 2009-10-27 – VMWare Server Directory Traversal Vulnerability
- 2012-09-12 – KMPlayer Memory Corruption Vulnerability
- 2012-11-19 – GOM Media Player Integer Overflow
- 2013-09-12 – Apple Quicktime ‘idsc’ Atom Out of Bounds Byte Swapping Vulnerability
- 2013-10-25 – Microsoft Internet Explorer CTextRange Use-After-Free Remote Code Execution
- 2014-02-25 – Apple Quicktime ‘ldat’ Atom Buffer Overflow Vulnerability
- 2014-02-25 – Apple Quicktime ‘ttfo’ Element Out of Bounds Byte Swapping Vulnerability
- 2014-02-04 – Microsoft Internet Explorer HtmlLayout Use-After-Free Remote Code Execution
- 2014-03-07 – Microsoft Internet Explorer CUListElement Use-After-Free Remote Code Execution
- 2014-06-08 – Microsoft Internet Explorer CreateTextNode Use-After-Free Remote Code Execution
- 2014-07-24 – Microsoft Internet Explorer GetReplacedUrlImgCtxCookie Out-of-bounds Indexing
- 2014-10-05 – Microsoft Internet Explorer CSS Region Use-After-Free Remote Code Execution
- 2014-10-14 – Microsoft Internet Explorer Memory Corruption
- 2014-11-21 – Microsoft Internet Explorer Use-After-Free
- 2015-01-06 – Microsoft Internet Explorer Layout::FlowBoxBuilder Use-After-Free
- 2015-02-23 – Microsoft Internet Explorer Tree TableBlock Use-After-Free
- 2015-05-01 – Microsoft Internet Explorer CViewCalculateImageImmunity Use-After-Free
- 2015-05-19 – Microsoft Internet Explorer CStyleSheetRuleManager Use-After-Free
- 2015-05-28 – Microsoft Journal Heap Overflow
- 2015-07-02 – Microsoft Internet Explorer CSharedStyle Unitialized Object
- 2015-07-06 – Microsoft Internet Explorer Layout::SvgTextBox Unitialized Object
- 2015-12-01 – Microsoft Internet Explorer Memory Corruption
- 2016-01-09 – Microsoft Journal Heap Overflow