CVE-2019-8014 的一点简单分析。 包含 Poc 和 exp Shellcode 是弹出计算器 or CMD 窗口,不记得了。 注意: my7z 是触发漏洞需要的 bmp 图片 ,文件太大了,我压缩了一下。
Adobe Acrobat and Reader versions 2019.012.20035 and previous versions, 2019.012.20035 and previous versions, 2017.011.30142 and previous versions, 2017.011.30143 and previous versions, 2015.006.30497 and previous versions, and 2015.006.30498 and previous versions have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution .
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
adobe acrobat_dc |
||
adobe acrobat_reader_dc |