Posted on January 4th, 2013

28 Aralıkta yayınlanan Internet Explorer Use After Free sıfır gün açıklığının (CVE-2012-4792) hızlıca ve kabaca analizidir.

http://www.signalsec.com/blog/publications/UAF-Analysis.pdf

—-

p.s. heap , uaf nedir diyenler şu adreslere göz atabilir;
https://www.owasp.org/index.php/Using_freed_memory
http://www.informit.com/articles/article.aspx?p=1081496 (advanced windows debugging - heap part)
http://www.signalsec.com/blog/publications/TR-HeapExploiting.pdf
http://blog.exodusintel.com/2013/01/02/happy-new-year-analysis-of-cve-2012-4792/