Difference between revisions of "Malformed CFF Vulnerability"

Revision as of 07:26, 12 October 2010

This vulnerability, along with the IOSurface Kernel Exploit, was used in Star/JailbreakMe 2.0. It is a stack overflow in the handling of CFF opcodes. Contrary to popular belief, it is not a problem with the PDF parser, although the malformed font was placed in a PDF for exploitation.

Credit

comex

Revision as of 03:34, 12 October 2010 (view source) Dialexio (talk \| contribs) (Made it more like the other exploit pages.) ← Older edit		Revision as of 07:26, 12 October 2010 (view source) Lilstevie (talk \| contribs) m (IOService to IOSurface) Newer edit →
Line 1:		Line 1:
−	This vulnerability, along with the [[~~IOService~~ Kernel Exploit]], was used in [[Star]]/[[JailbreakMe]] 2.0. It is a stack overflow in the handling of [[wikipedia:PostScript fonts#Compact Font Format\|CFF]] opcodes. Contrary to popular belief, it is '''not''' a problem with the PDF parser, although the malformed font was placed in a PDF for exploitation.	+	This vulnerability, along with the [[IOSurface Kernel Exploit]], was used in [[Star]]/[[JailbreakMe]] 2.0. It is a stack overflow in the handling of [[wikipedia:PostScript fonts#Compact Font Format\|CFF]] opcodes. Contrary to popular belief, it is '''not''' a problem with the PDF parser, although the malformed font was placed in a PDF for exploitation.

	== Credit ==		== Credit ==

Difference between revisions of "Malformed CFF Vulnerability"

Revision as of 07:26, 12 October 2010

Credit

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Miscellaneous

Tools