Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdtGoogle Security Research1337DAY-ID-30245
HistoryApr 24, 2018 - 12:00 a.m.

Adobe Flash - Overflow in Slab Rendering Exploit

2018-04-2400:00:00
Google Security Research
0day.today
23

0.921 High

EPSS

Percentile

98.7%

JSON

Exploit for multiple platform in category dos / poc

The attached fuzzed swf file causes heap or stack corruption (depending on platform) when rendering a slab.
 
This PoC crashes a little bit unreliably, it is the most reliable in the standalone Flash player and Microsoft Edge.
 
 
Proof of Concept:
https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/44527.zip

#  0day.today [2018-04-25]  #

Related

cve 1
checkpoint_advisories 1
prion 1
ubuntucve 1
redhatcve 3
trendmicroblog 1
openvas 7
nessus 7
kaspersky 1
freebsd 1
gentoo 1
redhat 1
symantec 1
mscve 1
adobe 1
threatpost 1
cve
cve
CVE-2018-4935
2018-05-19 17:29:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Out-of-bounds write (APSB18-08: CVE-2018-4935)
2018-04-10 00:00:00
prion
prion
Out-of-bounds
2018-05-19 17:29:00
ubuntucve
ubuntucve
CVE-2018-4935
2018-05-19 00:00:00
redhatcve
redhatcve
CVE-2018-4932
2018-04-10 21:51:21
CVE-2018-4937
2018-04-10 21:52:19
CVE-2018-4935
2018-04-10 21:51:56
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of April 16, 2018
2018-04-20 14:45:13
openvas
openvas
Adobe Flash Player Within Google Chrome Security Update(apsb18-08)- MAC OS X
2018-04-11 00:00:00
Adobe Flash Player Within Google Chrome Security Update(apsb18-08)- Linux
2018-04-11 00:00:00
Adobe Flash Player Security Updates(apsb18-08)-MAC OS X
2018-04-11 00:00:00
nessus
nessus
FreeBSD : Flash Player -- multiple vulnerabilities (5c6f7482-3ced-11e8-b157-6451062f0f7a)
2018-04-11 00:00:00
GLSA-201804-11 : Adobe Flash Player: Multiple vulnerabilities
2018-04-12 00:00:00
RHEL 6 : flash-plugin (RHSA-2018:1119)
2018-04-12 00:00:00
kaspersky
kaspersky
KLA11223 Multiple vulnerabilities in Adobe Flash Player
2018-04-10 00:00:00
freebsd
freebsd
Flash Player -- multiple vulnerabilities
2018-04-10 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2018-04-11 00:00:00
redhat
redhat
(RHSA-2018:1119) Critical: flash-plugin security update
2018-04-11 21:13:17
symantec
symantec
Adobe Flash Player APSB18-08 Multiple Security Vulnerabilities
2018-04-10 00:00:00
mscve
mscve
April 2018 Adobe Flash Security Update
2018-04-10 07:00:00
adobe
adobe
APSB18-08 Security updates available for Adobe Flash Player
2018-04-10 00:00:00
threatpost
threatpost
Adobe Patches Four Critical Bugs in Flash, InDesign
2018-04-10 16:21:34

0.921 High

EPSS

Percentile

98.7%

JSON
Related for 1337DAY-ID-30245
cve1checkpoint_advisories1prion1ubuntucve1redhatcve3trendmicroblog1openvas7nessus7kaspersky1freebsd1gentoo1redhat1symantec1mscve1adobe1threatpost1