- #Nitro reader 5 crashes pdf#
- #Nitro reader 5 crashes windows 10#
- #Nitro reader 5 crashes portable#
- #Nitro reader 5 crashes code#
Below are the example of MSEC log file.Īfter eliminating the duplicates, I look for a unique crash dump.
This log contains the crash dump of the program (on the last state of exception) and provide the result of exploitability based on Microsoft Exploitable plugin for WinDBG. Since BFF supports minimization, it helps a lot in speed up the analysis by viewing the MSEC log file.
Looking at the UNKNOWN results it tells us a lot of duplicates and required to manually triaging those crash path. There’s no EXPLOITABLE was caught during fuzzing. Amongst this hundreds crashes, it was only categorized as UNKNOWN and PROBABLY_NOT_EXPLOITABLE. It then build the seedfile set and run the program.Īfter few hours of running, there are 111 crashes found. Once all setup properly, just fire up the file called bff.py in command prompt and it should initialize the first running as in following screenshot: It is roughly similar to Charlie Miller’s 5 lines of Python. The percent of the selected bytes can be tweaked by min_ratio and max_ratio. According to CERT, the module randomly selects bytes in an input file and assign random values. I select byte mutation (bytemut) option in the config file and once the BFF run, it will load the module bytemut.py. "fuzzer" where it supports multiple type of built-in fuzzer including bytemut, swap, wave, drop, insert, truncate, crmut, crlfmut, nullmut, verify "runoptions" supports iteration, seed interval, minimize crashes, recycle crashses and check for duplicates "debugger" sets a debugging heap and number of exceptions being handled "runner" supports the timeout of the application executed, watch CPU process and hide stdout of the application "directories" for store the seed files (corpus) and results "target" installation path (executable location to fuzz) "campaign" name (project / target name) BFF uses configuration file in a YAML format and allows user to modify the options and they call it fuzzing campaign settings. Its a installer and just click next and next until it gets installed at C:\BFF.įuzzing with BFF is not that hard like AFL and WinAFL where you need to write harness, compile with its specific APIs, having limitation with corpus size and many more. The BFF tool can be downloaded from here.
#Nitro reader 5 crashes windows 10#
I setup the environment in VM using Windows 10 圆4 with BFF tool along with the Nitro Pro 13 version 13.8.2.140. I believe the version below 13.8.2.140 are affected too, but haven’t tested until this time.
#Nitro reader 5 crashes code#
However, the code behind the Nitro uses famous library known JBIG2Decode. The company has over 650,000 business customers worldwide, and claims millions of users across the globe.
#Nitro reader 5 crashes portable#
develops commercial software used to create, edit, sign, and secure Portable Document Format files and digital documents. TLDR after few hours running, BFF caught some exceptions and there’s a bunch of issue found. The BFF automatically collects test cases that cause software to crash in unique ways, and debugs information associated with the crashes. Mutational fuzzing is the act of taking well-formed input data and corrupting it in various ways, looking for cases that cause crashes. CERT BFF is a software-testing tool that performs mutational fuzzing on software that consumes file input. While writing and debugging (try and error lol) the issue for my harness, I plan to run another fuzzer which is CERT Basic Fuzzing Framework (BFF) and let it run for few couple of days just to see if there’s any bug or crashes found.
#Nitro reader 5 crashes pdf#
I wrote a harness for Nitro PDF reader and fuzzing it with WinAFL. Last December, I decided to continue fuzzing on Nitro PDF software.
0 kommentar(er)
