Acrobat Acrobat - Font Parsing Integer Overflow Vulnerability

EDB-ID: 14642 CVE: 2010-2862 OSVDB-ID: 66859
Verified: Author: Ramz Afzar Published: 2010-08-14
Download Exploit: Source Raw Download Vulnerable App: N/A
From the authors site:

In this article, I'm going to share with you my observations and analysis on recent Adobe Acrobat Font Parsing vulnerability. Source document exists here: (page 51-58)

After reading the paper, I started studying the TTF format. After initial research, I wrote this script:

Writeup and proof of concept files included in archive file. (VA010-003.tgz)