Git Product home page Git Product logo

fengjixuchui / uaf-fuzzer-testsuite Goto Github PK

View Code? Open in Web Editor NEW

This project forked from szu-se/uaf-fuzzer-testsuite

0.0 0.0 0.0 0 B

Makefile 14.28% Roff 0.73% Shell 1.27% C++ 5.78% GDB 0.01% Perl 0.64% XS 0.06% M4 0.83% HTML 2.69% CSS 0.01% C 54.93% Tcl 0.02% Python 0.22% DIGITAL Command Language 0.03% Objective-C 3.37% sed 0.01% Lex 0.21% Yacc 0.33% Emacs Lisp 0.01% Assembly 14.57%

uaf-fuzzer-testsuite's Introduction

UAF-Fuzzer-TestSuite

Use-after-free testsuite used for fuzzing experiment

Seed and POC in the Fuzzing folder

1. Elfutils 0.173 [Detail Info]

  • Bug type: double-free
  • CVE ID: CVE-2018-16402
  • Download: ftp://sourceware.org/pub/elfutils/0.173/
  • Reproduce: ./eu-nm $POC

2. Mini Xml v2.12 [Detail Info]

git clone https://github.com/michaelrsweet/mxml.git
git checkout 53c75b04c133a79fbf81782fa83d45a6c7d2dcf1
  • Reproduce: ./mxmldoc $POC

3. openh264 [Detail Info]

git clone https://github.com/cisco/openh264.git
git checkout 8684722271ac16118df2fe50322ffe218b9507a7
  • Reproduce: h264dec $POC ./tmp

4. boolector [Detail Info]

git clone https://github.com/Boolector/boolector.git
git checkout 0874a185cd98711b3e4a0b1a0c10e858ff4a23e6
  • Reproduce: boolector $POC

5. libpff [Detail Info]

git clone https://github.com/libyal/libpff.git
git checkout 4938b7a891c6ec2112e5f059e13426915ae49adb
  • Reproduce: ./pffinfo $POC
  • Note: Compile failed

6. GNU cflow 1.6 [Detail Info]

7. mjs

8. ImageMagick

  • ImageMagick version: 7.0.8-43 Q16 x86_64 2019-04-27
  • Bug type: use-after-free
  • CVE ID: pending
  • Download:
git clone https://github.com/ImageMagick/ImageMagick.git
git checkout 3183a88ae19674b4625e447d5a29da2a12d742c0
  • Reproduce: convert $POC /dev/null

9. mupdf

  • Bug type: use-after-free
  • CVE ID: pending
  • Download:
git clone git://git.ghostscript.com/mupdf.git
git checkout 4422de4f6756b7dc19ca915ae6d63f5ada718ae7
git submodule update --init --recursive
make sanitize
  • Reproduce: muraster $POC

10. NASM 2.14.02 [Detail Info]

  • Bug type: use-after-free
  • CVE ID: CVE-2019-8343, CVE-2018-20535, CVE-2018-20538
  • Download: 
    git clone git://repo.or.cz/nasm.git
git checkout 74246c499ea4313fb8837977dc0c135fc50567c0
  • Reproduce: ./nasm -f bin $POC -o ./tmp

11. NASM 2.14rc0 [Detail Info]

12. Binutils 2.31.51.20190109 [Detail Info]

git clone git://sourceware.org/git/binutils-gdb.git
git checkout 923c6a756476f3a1f92d6625aacbbf5253b7739b
  • Reproduce: ./readelf -a $POC

13. Binutils 2.28 [Detail Info]

14. lrzip [Detail Info]

git clone https://github.com/ckolivas/lrzip.git
git checkout ed51e14a4b7e921cd5e633100ec7403e120f6477
  • Reproduce: ./lrzip -t $POC

15. jpegoptim [Detail Info]

git clone https://github.com/tjko/jpegoptim.git
git checkout d23abf2c59692e0e3638ce8c89d98a3628c686b7
  • Reproduce: ./jpegoptim $POC

16. yara [Detail Info]

git clone https://github.com/VirusTotal/yara.git
git checkout 890c3f850293176c0e996a602ffa88b315f4e98f
  • Reproduce: yara $POC strings

17. liblouis v3.2.0 [Detail Info]

18. GraphicsMagick 1.3.26 [Detail Info]

19. boringssl-2016-02-12 (In google testsuite) [Detail Info]

uaf-fuzzer-testsuite's People

Contributors

wcventure avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.