New issue
Advanced search Search tips

Issue 209 attachment: chrome.txt (2.5 KB) 

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
 
eax=00000004 ebx=03258c70 ecx=03285fb0 edx=027f49a0 esi=032e51c0 edi=03285fb0
eip=032e51c0 esp=0020ecb4 ebp=0020ecc8 iopl=0         nv up ei pl zr na pe nc
cs=0023  ss=002b  ds=002b  es=002b  fs=0053  gs=002b             efl=00010246
032e51c0 50              push    eax

!exploitable 1.6.0.0
HostMachine\HostUser
Executing Processor Architecture is x86
Debuggee is in User Mode
Debuggee is a live user mode debugging session on the local machine
Event Type: Exception
Exception Faulting Address: 0x32e51c0
First Chance Exception Type: STATUS_ACCESS_VIOLATION (0xC0000005)
Exception Sub-Type: Data Execution Protection (DEP) Violation

Exception Hash (Major/Minor): 0x2a46a0fc.0x0baa0f48

 Hash Usage : Stack Trace:
Major+Minor : Unknown
Major+Minor : pepflashplayer!PPP_ShutdownBroker+0x9a447
Major+Minor : pepflashplayer!PPP_ShutdownBroker+0x9a640
Major+Minor : pepflashplayer!PPP_ShutdownBroker+0x9a447
Major+Minor : pepflashplayer!PPP_ShutdownBroker+0x9a640
Minor       : pepflashplayer!PPP_ShutdownBroker+0x9a447
Minor       : pepflashplayer!PPP_ShutdownBroker+0x9ac7a
Minor       : pepflashplayer!PPP_ShutdownBroker+0x9b467
Minor       : pepflashplayer!PPP_ShutdownBroker+0xbaab2
Minor       : pepflashplayer!PPP_ShutdownBroker+0x605a7
Minor       : pepflashplayer!PPP_ShutdownBroker+0x200e86
Minor       : pepflashplayer!PPP_ShutdownBroker+0x201534
Minor       : pepflashplayer!PPP_ShutdownBroker+0x2019ca
Minor       : pepflashplayer!PPP_ShutdownBroker+0x2010da
Minor       : pepflashplayer!PPP_ShutdownBroker+0xf2a75
Minor       : pepflashplayer!PPP_ShutdownBroker+0xeefcf
Minor       : KERNELBASE!GetSystemInfo+0x4a
Minor       : KERNELBASE!GetSystemInfo+0x55
Minor       : pepflashplayer!PPP_ShutdownBroker+0x5749a5
Minor       : pepflashplayer!PPP_ShutdownBroker+0x148108
Minor       : pepflashplayer!PPP_ShutdownBroker+0x1305d
Minor       : pepflashplayer!PPP_ShutdownBroker+0x12fa2
Minor       : pepflashplayer!PPP_ShutdownBroker+0x33925
Minor       : pepflashplayer!PPP_ShutdownBroker+0x3384d
Minor       : pepflashplayer!PPP_ShutdownBroker+0x33a95
Instruction Address: 0x00000000032e51c0

Description: Data Execution Prevention Violation
Short Description: DEPViolation
Exploitability Classification: EXPLOITABLE
Recommended Bug Title: Exploitable - Data Execution Prevention Violation starting at Unknown Symbol @ 0x00000000032e51c0 called from pepflashplayer!PPP_ShutdownBroker+0x000000000009a447 (Hash=0x2a46a0fc.0x0baa0f48)

User mode DEP access violations are exploitable.