Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2011-3026 PoC — Google Chrome ‘libpng’整数溢出漏洞

Source
https://github.com/argp/cve-2011-3026-firefox
Associated Vulnerability
Title:Google Chrome ‘libpng’整数溢出漏洞 (CVE-2011-3026)
Description:Integer overflow in libpng, as used in Google Chrome before 17.0.963.56, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an integer truncation.
Description
Example of exploiting CVE-2011-3026 on Firefox (Linux/x86)
Readme
cve-2011-3026-firefox
=====================

Example of exploiting CVE-2011-3026 on Firefox (Linux/x86), from our Black
Hat 2012 talk:

"Exploiting the jemalloc Memory Allocator: Owning Firefox's Heap"

Original slide deck available at:

https://www.blackhat.com/html/bh-us-12/bh-us-12-archives.html#Argyroudis

Updated slide deck at:

http://census-labs.com/news/2012/08/03/blackhat-usa-2012-update/

argp & huku, Thu Aug 2 19:01:58 EEST 2012
File Snapshot

 [4.0K]  /data/pocs/76857a21d970495795958eb2f61285aa10c624e9
├── [2.1K]  cve-2011-3026.html
├── [4.0M]  cve-2011-3026.png
├── [1.6K]  LICENSE
└── [ 445]  README.md

0 directories, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →