11 lines
No EOL
548 B
Text
11 lines
No EOL
548 B
Text
From the authors site:
|
|
|
|
In this article, I'm going to share with you my observations and analysis on recent Adobe Acrobat Font Parsing vulnerability. Source document exists here:
|
|
|
|
http://securityevaluators.com/files/papers/CrashAnalysis.pdf (page 51-58)
|
|
|
|
After reading the paper, I started studying the TTF format. After initial research, I wrote this script:
|
|
|
|
Writeup and proof of concept files included in archive file.
|
|
|
|
https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/14642.tgz (VA010-003.tgz) |