-
-
[转帖]Acrobat Acrobat Font Parsing Integer Overflow Vulnerability
-
2010-8-15 17:01
3132
-
[转帖]Acrobat Acrobat Font Parsing Integer Overflow Vulnerability
From the authors site:
In this article, I'm going to share with you my observations and analysis on recent Adobe Acrobat Font Parsing vulnerability. Source document exists here:
http://securityevaluators.com/files/papers/CrashAnalysis.pdf (page 51-58)
After reading the paper, I started studying the TTF format. After initial research, I wrote this script:
Writeup and proof of concept files included in archive file.
http://www.exploit-db.com/sploits/VA010-003.tgz
[培训]内核驱动高级班,冲击BAT一流互联网大厂工作,每周日13:00-18:00直播授课
