Adobe Flash - Use-After-Free When Setting Stage

2016-01-11T00:00:00
ID EDB-ID:39221
Type exploitdb
Reporter Google Security Research
Modified 2016-01-11T00:00:00

Description

Adobe Flash - Use-After-Free When Setting Stage. CVE-2015-8634. Dos exploit for win64 platform

                                        
                                            Source: https://code.google.com/p/google-security-research/issues/detail?id=629

The attached file causes a use-after-free when calling the stage setter. The PoC works most consistently in Firefox for 64-bit Windows.


Proof of Concept:
https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/39221.zip