11 lines
No EOL
529 B
Text
11 lines
No EOL
529 B
Text
From the authors site:
|
|
|
|
In this article, I'm going to share with you my observations and analysis on recent Adobe Acrobat Font Parsing vulnerability. Source document exists here:
|
|
|
|
http://securityevaluators.com/files/papers/CrashAnalysis.pdf (page 51-58)
|
|
|
|
After reading the paper, I started studying the TTF format. After initial research, I wrote this script:
|
|
|
|
Writeup and proof of concept files included in archive file.
|
|
|
|
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/14642.tgz (VA010-003.tgz) |