Acrobat Acrobat – Font Parsing Integer Overflow

• Exploit Database
• 10 阅读

• 作者： Ramz Afzar
  日期： 2010-08-14
• 类别：

  • dos
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/14642/

• From the authors site:
  
  In this article, I'm going to share with you my observations and analysis on recent Adobe Acrobat Font Parsing vulnerability. Source document exists here:
  
  http://securityevaluators.com/files/papers/CrashAnalysis.pdf (page 51-58)
  
  After reading the paper, I started studying the TTF format. After initial research, I wrote this script:
  
  Writeup and proof of concept files included in archive file.
  
  https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/14642.tgz (VA010-003.tgz)