[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Honggfuzz

To: full-disclosure@xxxxxxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx
Subject: Honggfuzz
From: Robert Święcki <robert@xxxxxxxxxxx>
Date: Tue, 14 Dec 2010 19:50:21 +0100

Hi,

I've recently made publicly available "yet another fuzzer". It's
simple, easy to use via command-line interface, providing nice
analysis of software crashes in a simple form of file names.

It has been used by me and some others to find a few, possibly
exploitable, bugs in some major software packages; incl.: freetype2,
librsvg, libtiff..

The code and documentation can be found here:
http://code.google.com/p/honggfuzz/

PS: Thanks to Felix Gröbert, Parisa Tabriz and Tavis Ormandy for their
help and suggestions.

-- 
Robert Święcki

Prev by Date: VUPEN Security Research - RealPlayer RA5 Data Handling Heap Overflow Vulnerability (VUPEN-SR-2010-31)
Next by Date: [ MDVSA-2010:253 ] bind
Previous by thread: VUPEN Security Research - RealPlayer RA5 Data Handling Heap Overflow Vulnerability (VUPEN-SR-2010-31)
Next by thread: [ MDVSA-2010:253 ] bind
Index(es):
- Date
- Thread