Exploit Adobe Acrobat / Acrobat Reader 6.0 - '.ETD' File Parser Format String

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
24841
Проверка EDB
  1. Пройдено
Автор
GREG MACMANUS
Тип уязвимости
DOS
Платформа
WINDOWS
CVE
N/A
Дата публикации
2004-12-14
Adobe Acrobat / Acrobat Reader 6.0 - '.ETD' File Parser Format String
Код:
source: https://www.securityfocus.com/bid/11934/info

Adobe Acrobat/Acrobat Reader is reported prone to a remote format string vulnerability. The vulnerability is present in the ETD file parser when processing tag values. Reports indicate that the values supplied for certain tags are used as the format string in an unspecified formatted output function. Because an attacker can control the format string and the variables passed to the formatted output function, this vulnerability may be exploited to write to arbitrary locations within the memory of the process.

<title>|%p|%p|%p|%p|%p|%p|%p|%p|%p|%p|%p|%p|%p|%p|%p|%p|</title>
<baseurl>|%p|%p|%p|%p|%p|%p|%p|%p|%p|%p|%p|%p|%p|%p|%p|%p|</baseurl>
 
Источник
www.exploit-db.com

Похожие темы