CVE-2018-5146
HIGHFirefox <5.9.01- Thunderbird <5.27.02 - Memory Corruption
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2018-5146. PoCs published by f01965.
AI-analyzed exploit summary This repository contains a proof-of-concept exploit for CVE-2018-5146, including a crafted OGG file, an exploit HTML file, and a CRC32 calculation tool. The vulnerability is related to a memory corruption issue in the OGG container handling.
Description
An out of bounds memory write while processing Vorbis audio data was reported through the Pwn2Own contest. This vulnerability affects Firefox < 59.0.1, Firefox ESR < 52.7.2, and Thunderbird < 52.7.
Exploits (1)
This repository contains a proof-of-concept exploit for CVE-2018-5146, including a crafted OGG file, an exploit HTML file, and a CRC32 calculation tool. The vulnerability is related to a memory corruption issue in the OGG container handling.
References (20)
Scores
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H