header-logo
Suggest Exploit
vendor:
by:
7.5
CVSS
HIGH
Out-of-Bounds Read
CWE
Product Name:
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested: Linux

Out-of-Bounds Read in AVC Processing

The attached fuzz file causes an out-of-bounds read in AVC processing. To reproduce the issue, put both attached files on a server and visit the given URL. This issue reproduces on Chrome and Firefox for Linux.

Mitigation:

Source

Exploit-DB raw data:

The attached fuzz file causes an out-of-bounds read in AVC processing. To reproduce the issue, put both attached files on a server, and vist:

http://127.0.0.1/LoadMP4.swf?file=transpose.mp4

This issue reproduces on Chrome and Firefox for Linux. 


Proof of Concept:
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/45268.zip

Navigation

Suggest Exploit

Services By CQR