New User, Welcome!     Login

Encapsulated Postscript

Secunia Research: Adobe Illustrator Encapsulated Postscript Parsing Vulnerability

====================================================================== 

                     Secunia Research 08/01/2010

 - Adobe Illustrator Encapsulated Postscript Parsing Vulnerability -

====================================================================== 
Table of Contents

Affected Software....................................................1

Adobe Illustrator CS4 (V14.0.0) Encapsulated Postscript (.eps) Overlong DSC Comment Buffer Overflow Exploit

<?php
    /*
    Adobe Illustrator CS4 (V14.0.0) Encapsulated Postscript (.eps)
    overlong DSC Comment Buffer Overflow Exploit
    by Nine:Situations:Group::pyrokinesis
    site: http://retrogod.altervista.org/
     
    An overlong string as DSC comment (more than 42000 bytes)
    results in a direct EIP overwrite.
    Exception is first-chance so the program will never crash.


Copyright © 1995-2012 LinuxRocket.net. All rights reserved.

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!