Exploit Adobe Flash - YUVPlane Decoding Heap Overflow

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
41423
Проверка EDB
  1. Пройдено
Автор
GOOGLE SECURITY RESEARCH
Тип уязвимости
DOS
Платформа
MULTIPLE
CVE
cve-2017-2986
Дата публикации
2017-02-21
Adobe Flash - YUVPlane Decoding Heap Overflow
Код:
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1008

The attached FLV file causes a heap overflow in YUVPlane decoding.

To reproduce, put LoadMP4.swf and yuvplane.flv on a server, and visit 127.0.0.1/LoadMP4.swf?file=yvplane.flv. 


Proof of Concept:
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/41423.zip
 
Источник
www.exploit-db.com

Похожие темы