Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2010-1411 PoC — Apple Mac OS X ImageIO LibTIFF多个整数溢出漏洞

Source
https://github.com/MAVProxyUser/httpfuzz-robomiller
Associated Vulnerability
Title:Apple Mac OS X ImageIO LibTIFF多个整数溢出漏洞 (CVE-2010-1411)
Description:Apple Mac OS X是苹果家族电脑所使用的操作系统,Font Book是Mac OS X中所包括的字体管理工具。 在Apple Mac OS X 10.5.8和Mac OS X 10.6.4之前的10.6版本的ImageIO中使用的LibTIFF 3.9.3之前版本的FAX3解码器的tif_fax3.c中的Fax3SetupState函数中存在多个整数溢出漏洞。远程攻击者可借助能够触发堆缓冲区溢出的特制TIFF文件执行任意代码或导致拒绝服务(应用程序崩溃)。
Description
Dumb Fuzzer used to find CVE-2010-1411
Readme
# httpfuzz-robomiller
Dumb Fuzzer used to find CVE-2010-1411 

based on cmiller-csw-2010.pdf  Babysitting an Army of Monkeys
https://fuzzinginfo.files.wordpress.com/2012/05/cmiller-csw-2010.pdf
File Snapshot

 [4.0K]  /data/pocs/113155ef7cd4d4fe1085365db39987a2753dfb64
├── [2.8K]  httpfuzz.rb
└── [ 194]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.