Adobe Flash CVE-2018-4934 – Info Leak in Image Inflation

Authors:Google Security Research   Risk:High 

CVE:CVE-2018-4934                 0day:Information leakage 

0day -id:0DAY-4934                 Date:2018-04-25

Description

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From APSB18-08:

Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and Chrome OS. These updates addresscriticalvulnerabilities in Adobe Flash Player 29.0.0.113 and earlier versions. Successful exploitation could lead to arbitrary code execution in the context of the current user.

Analysis

The attached image causes an info leak in image inflation. It occasionally crashes when rendered, otherwise it displays uninitialized memory as pixels.

To reproduce, put the attached images on a webserver and vist: http://127.0.0.1?img=inflate.png.

POC

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/44528.zip

Leave a Reply