Corrupting Memory w/Malicious Audio Stream (CVE-2025-31200 #2) YT
Description
Are you a security researcher or reverse engineer?
For 50% off IDA Products use promo code BILLY50, https://hex-rays.com/pricing *
For 30% off IDA Training use promo code BILLY30, https://hex-rays.com/training **
*License discounts are only valid for individuals, not corporations. Cannot be combined with any other promo code or discount.
** Cannot be combined with any other promo code or discount.
/////////////////////////////////////
Hey guys - today we're digging deeper into the recent in-the-wild iOS CoreAudio bug (CVE-2025-31200) that we looked at in my last video. Previously we analysed the patch but we have yet to understand the root cause of the crash and discover which memory corruption primitives we are working with.
Hope you enjoy this video, and feel free to leave suggestions in the comments for other technical topics related to security and vulnerability research you'd like to see feature on this channel!
Links:
Part #1 - https://www.youtube.com/watch?v=nTO3TRBW00E
Noah’s technical breakdown - https://blog.noahhw.dev/posts/cve-2025-31200/
zhuowei’s Github repo - https://github.com/zhuowei/apple-positional-audio-codec-invalid-header/
Thanks for watching
~ bellis1000
 [RWjpM0zDJVA].webp){kind=link}