Adobe flash avc processing outofbounds read Vulnerability / Exploit

  /     /     /  

Exploits / Vulnerability Discovered : 2018-08-27 | Type : dos | Platform : linux
This exploit / vulnerability Adobe flash avc processing outofbounds read is for educational purposes only and if it is used you will do on your own risk!


[+] Code ...

The attached fuzz file causes an out-of-bounds read in AVC processing. To reproduce the issue, put both attached files on a server, and vist:

http://127.0.0.1/LoadMP4.swf?file=transpose.mp4

This issue reproduces on Chrome and Firefox for Linux.


Proof of Concept:
https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/45268.zip