Adobe Flash - ATF Parser Heap Corruption
| EKU-ID: 46432 | CVE: CVE-2017-3078 | OSVDB-ID: |
| Author: Google Security Research | Published: 2017-06-23 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 46432 | CVE: CVE-2017-3078 | OSVDB-ID: |
| Author: Google Security Research | Published: 2017-06-23 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1216 The attached file causes heap corruption in the ATF parser. To reproduce the issue, copy atffree.atf and LoadImage.swf to a server, and visit http://127.0.0.1/LoadImage.swf?img=atffree.png. Proof of Concept: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/42249.zip