Saturday, July 9, 2011

CVE-2011-0611 Adobe Flash Zero Day embeded in DOC

root@bt:~#flasm -d 1.swf
movie '1.swf' // flash 10, total frames: 1, frame rate: 24 fps, 550x400 px
frame 0
00000000    push FALSE, 326943637, 326943739
0000000F    oldEquals
00000010    not
00000011    branchIfTrue label2 // offset 1100
00000016    branchIfTrue label1 // offset 24
0000001B    constants 'A', 'B', 'C', 'D', 'E', 'F', 'G', 'H', 'I'  Declared constant pool length 21 differs from calculated length 20
---

crash exist in Adobe Flash Player plugin .
in my test NPSWF32.dll (10.2.153.1)
crash at location 100cfc03

code : http://pastebin.com/DkQThUUY
u can find more info in : 
http://contagiodump.blogspot.com/2011/04/apr-8-cve-2011-0611-flash-player-zero.html 
 
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)