Adobe Flash - YUVPlane Decoding Heap Overflow

Author: Google Security Research
type: dos
platform: multiple
port: 
date_added: 2017-02-21 
date_updated: 2017-02-21 
verified: 1 
codes: CVE-2017-2986 
tags: Denial of Service (DoS)
aliases:  
screenshot_url:  
application_url: 

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1008

The attached FLV file causes a heap overflow in YUVPlane decoding.

To reproduce, put LoadMP4.swf and yuvplane.flv on a server, and visit 127.0.0.1/LoadMP4.swf?file=yvplane.flv.


Proof of Concept:
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/41423.zip