METASPLOIT-modules/exploits/windows/browser/adobe_flash_otf_font.rb

METASPLOIT ruby WORKING POC

Exploit for CVE-2012-1535 - Adobe Flash Player < 11.3.300.271 - Code Injection

AI Analysis

This Metasploit module exploits an integer overflow in Adobe Flash Player's handling of the 'kern' table in OTF fonts, leading to remote code execution. It includes ROP chains for various Flash versions and targets multiple browser/OS combinations.

Attack Type

RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

Loading exploit code...

Download ZIP Password: eip

Source

Platform Metasploit

Type poc

Platform win

Language ruby

Rank normal

Files 1

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/adobe_flash_otf_font.rb

Authors

Alexander Gavrun sinn3r juan vazquez

Vulnerability

CVE-2012-1535

Adobe Flash Player < 11.3.300.271 - Code Injection

HIGH KEV

CVSS 7.8