Adobe Flash - Invoke Accesses Trait Out-of-Bounds
| EKU-ID: 46650 | CVE: CVE-2017-3106 | OSVDB-ID: |
| Author: Google Security Research | Published: 2017-08-17 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 46650 | CVE: CVE-2017-3106 | OSVDB-ID: |
| Author: Google Security Research | Published: 2017-08-17 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1320 The attached fuzzed swf file causes the traits of an ActionScript object to be accessed out of bounds. This can probably lead to exploitable type confusion. Proof of Concept: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/42480.zip