Adobe Flash – AVC Processing Out-of-Bounds Read

Exploit Database
102 阅读

作者： Google Security Research

日期： 2018-08-27
类别：
- dos
平台：
- linux
来源：https://www.exploit-db.com/exploits/45268/

The attached fuzz file causes an out-of-bounds read in AVC processing. To reproduce the issue, put both attached files on a server, and vist:

<div style="width: 640px;" class="wp-video"><video class="wp-video-shortcode" id="video-76182-2" preload="metadata" controls="controls"><source type="video/mp4" src="http://127.0.0.1/LoadMP4.swf?file=transpose.mp4&_=2" /><a href="http://127.0.0.1/LoadMP4.swf?file=transpose.mp4">http://127.0.0.1/LoadMP4.swf?file=transpose.mp4</a></video></div>

This issue reproduces on Chrome and Firefox for Linux.

Proof of Concept:

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/45268.zip

last Exploits
Adobe Flash – AVC Processing Out-of-Bounds Read的更多信息

Weborf HTTP Server – Denial of Service：
Jolix Media Player 1.1.0 – ‘.m3u’ Denial of Service：
SpotMSN 2.4.6 – ‘Name’ Denial of Service (PoC)：
Microsoft Windows Kernel – ‘NtQueryVirtualMemory(MemoryMappedFilenameInformation)’ 64-bit Pool Memory Disclosure：
Mozilla Firefox 3.6.3 – Fork Bomb (Denial of Service)：
Linux Kernel – ‘The Huge Dirty Cow’ Overwriting The Huge Zero Page (1)：
Code Blocks 20.03 – Denial Of Service (PoC)：
Google Chrome 26.0.1410.43 (Webkit) – OBJECT Element Use-After-Free (PoC)：