Open Asset Import Library Assimp Out-of-Bounds Read Vulnerability in ParsingUtils.h

A heap out-of-bounds read vulnerability has been identified in Open Asset Import Library (Assimp) version 5.4.3. The issue arises in the function 'SkipSpaces' within 'assimp/include/assimp/ParsingUtils.h'. This vulnerability allows for out-of-bounds memory access, which could potentially be exploited to read data beyond the intended buffer limits. The vulnerability requires local access to be exploited.

Impact

Exploitation of this vulnerability leads to a heap-based out-of-bounds read, which can cause memory corruption and potentially allow for arbitrary code execution.

Reproduction

The vulnerability can be reproduced by building the 'assimp_fuzzer' with AddressSanitizer (ASAN) enabled, similar to how OSS-Fuzz operates. After compiling the library, the fuzzer can be run with a specific input that triggers the out-of-bounds read in the 'SkipSpaces' function. This input can be generated and saved as a '.poc' file, which the fuzzer will use to demonstrate the vulnerability.