| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <CAN1eSkuMQMY7H2PV0xLo6r6U-ZebPck0MFNh5nEz8icnU80OBA@mail.gmail.com> Date: Thu, 4 Feb 2021 16:22:41 +0800 From: houjingyi <houjingyi647@...il.com> To: fulldisclosure@...lists.org Subject: [FD] null pointer deference in mfmp4srcsnk.dll in latest windows 10 Found a null pointer deference in mfmp4srcsnk.dll in latest windows 10 by accident. Download mov file here: https://github.com/MozillaSecurity/fuzzdata/blob/master/samples/samples.mplayerhq.hu/ffmpeg-bugs/roundup/issue2490/invalid_mov_time.mov Your explorer will crash. If not use windows media player. (2788.3588): Access violation - code c0000005 (first chance) First chance exceptions are reported before any exception handling. This exception may be expected and handled. eax=00000000 ebx=180bced8 ecx=5aaa2e20 edx=44445111 esi=5aaa2e20 edi=00000000 eip=5aa7d16e esp=1793f374 ebp=1793f3b4 iopl=0 nv up ei pl zr na pe cy cs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00010247 mfmp4srcsnk!CQTMovie::FinalParseAtom+0x16e: 5aa7d16e 8b08 mov ecx,dword ptr [eax] ds:002b:00000000=???????? I know MSRC usually do not fix null pointer deference but I reported to them just in case. And as I expected they closed the case. _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Powered by blists - more mailing lists