TheZZAZZGlitch | VBA 1.8.0, VBA-M 2.0.2 - Multiple vulnerabilities in ELF file parser @TheZZAZZGlitch | Uploaded July 2018 | Updated October 2024, 4 days ago.
Breaking the emulators even more. All versions of VBA and VBA-RR, and versions of VBA-M before 2.1.0, happen to have several bugs in their ELF file parsers. Loading specially prepared ELF files could either result in running untrusted code outside the emulator, or leak information about the outside environment to the emulated ROM, including user account information, filesystem paths, configuration, or even save data from other games.
PoC exploits + technical writeup: sites.google.com/site/thezzazzglitch/home/vba_elfexploit.zip
Breaking the emulators even more. All versions of VBA and VBA-RR, and versions of VBA-M before 2.1.0, happen to have several bugs in their ELF file parsers. Loading specially prepared ELF files could either result in running untrusted code outside the emulator, or leak information about the outside environment to the emulated ROM, including user account information, filesystem paths, configuration, or even save data from other games.
PoC exploits + technical writeup: sites.google.com/site/thezzazzglitch/home/vba_elfexploit.zip