Full title: Libmimedir VCF Memory Corruption PoC 
Category: dos / poc
Platform: linux
Libmimedir suffers from a memory corruption vulnerability. Adding two NULL bytes to the end of a VCF file allows a user to manipulate free() calls which occur during it's lexer's memory clean-up procedure. This could lead to exploitable conditions such as crafting a specific memory chunk to allow for arbitrary code execution.

# 0day.today @ http://0day.today/