tiny-js

tiny-js copied to clipboard

integer arithmetic

2

TinyJS seems to treat integers differently from other numbers? ``` enno@erdbaer:~/src/tiny-js@master$ ./Script > Interactive mode... Type quit(); to exit, or print(...); to print something, or dump() to dump the symbol...

ennorehling

heap-use-after-free

5

# Enviroment ``` operating system: ubuntu18.04 compile: Use Google's ASAN(https://github.com/google/sanitizers) for vulnerability detection. Specifically in Makefile, `add -fsanitize=address` to CFLAGS make test command: ./run_tests poc ``` # poc: ``` {...

bird8693

# Enviroment ``` operating system: ubuntu18.04 compile command: make test command: ./run_tests poc ``` # poc: ``` https://drive.google.com/open?id=1rn2gi6JArZARCNQIL2EARMLy06a0-i8V ``` # vulnerability description: It is a Null pointer dereference. Here is...

bird8693

# Enviroment ``` operating system: ubuntu18.04 compile: Use Google's ASAN(https://github.com/google/sanitizers) for vulnerability detection. Specifically in Makefile, `add -fsanitize=address` to CFLAGS make test command: ./run_tests poc ``` # poc: ``` {...

bird8693

# Enviroment ``` operating system: ubuntu18.04 compile command: make test command: ./run_tests poc ``` # poc: ``` https://drive.google.com/open?id=1jhNSWmb-SeA6K4xDWQCEhaJFts7E3iOa ``` # vulnerability description: CTinyJS :: expression has a problem. On the...

bird8693

# Enviroment ``` operating system: ubuntu18.04 compile command: make test command: ./run_tests poc ``` # poc: ``` https://drive.google.com/open?id=1SQYrTreCmgZdXTbM6dAvZfMQSG3WYnRV ``` # vulnerability description: It is a problem with CTinyJS :: expression....

bird8693

# Enviroment ``` operating system: ubuntu18.04 compile command: make test command: ./run_tests poc ``` # poc: ``` https://drive.google.com/open?id=1WRlgq9EXl6Z6aMwZZVt0CmKLxt0IKwOL ``` It is a problem with CTinyJS :: functionCall. On line TinyJS.cpp...

bird8693

# Enviroment ``` operating system: ubuntu18.04 compile command: make test command: ./run_tests poc ``` # poc: ``` https://drive.google.com/open?id=1Piwkup12nmhGZ3-z_GuNneH43cHnh-7m ``` # vulnerability description: It is CTinyJS :: logic that has a...

bird8693

# Enviroment ``` operating system: ubuntu18.04 compile command: make test command: ./run_tests poc ``` # poc: ``` https://drive.google.com/open?id=1pQIgme3iIyP2Z115HOoDSFD8dm5YneyY ``` # vulnerability description: There is a problem with CScriptVar :: mathsOp....

bird8693

# Enviroment ``` operating system: ubuntu18.04 compile command: make test command: ./run_tests poc ``` # poc: ``` https://drive.google.com/open?id=1233VnpgxQZq0nUbKLXEOEYb5NcOPs--P ``` # vulnerability description: First observe the stack traceback, as shown in...

bird8693