- A+
福昕PDF浏览器应该是用得比较多的一个软件了,其最新英文版本存在一个除零的拒绝服务漏洞,可以使PDF浏览器崩溃。在虚拟机上验证之后确实如此,可惜好像被catch然后处理掉了,否则可能又是一个APT攻击载体,嘿嘿嘿。我发现中文版本没有出现这个问题,版本号才更新到4哦。
触发漏洞的PDF下载:
http://www.exploit-db.com/sploits/21645.pdf
崩溃日志:
=========== [Start of CRASHLOG.TXT] =========
Foxit Reader caused an Integer Divide by Zero (0xc0000094)
in module Foxit Reader.EXE at 001b:0055eb8c.
Error occurred at 10/12/2012 11:46:44.
C:\Program Files\Foxit Software\Foxit Reader\Foxit Reader.EXE, run by Administrator.
Reader Version : 5.4.3.0920.
Operating system: Windows XP (5.1.2600).
4 processor(s), type 586.
56% memory in use.
512 MBytes physical memory.
223 MBytes physical memory free.
1251 MBytes paging file.
989 MBytes paging file free.
2048 MBytes user address space.
1923 MBytes user address space free.
Context:
EDI: 0x00000000 ESI: 0x00000000 EAX: 0xffffffff
EBX: 0x00000000 ECX: 0x00000000 EDX: 0x00000000
EIP: 0x0055eb8c EBP: 0x00000000 SegCs: 0x0000001b
EFlags: 0x00010246 ESP: 0x0012f574 SegSs: 0x00000023
Bytes at CS:EIP:
f7 f7 39 44 24 3c 0f 83 6e 02 00 00 8b d7 8b 44
- 我的微信
- 这是我的微信扫一扫
- 我的微信公众号
- 我的微信公众号扫一扫