Exploring the New World - Remote Exploitation of SQLite and Curl

Discover new methods for identifying vulnerabilities in SQLite and Curl through a 47-minute Black Hat conference talk. Learn about the "Magellan" set of heap buffer overflow and heap data disclosure vulnerabilities in SQLite, as well as the "Dias" remote memory leak and stack buffer overflow vulnerabilities in Curl. Explore techniques for Fuzz testing and manual auditing presented by Wenxiang Qian, YuXiang Li, and HuiYu Wu. Gain insights into specific CVEs, including CVE-2018-20346, CVE-2018-20505, CVE-2018-20506, CVE-2018-16890, and CVE-2019-3822. Access full presentation materials and abstract for a comprehensive understanding of these critical security findings in widely-used software libraries.