Unity 3D Web Player Vulnerability

Unity 3d is a game engine used in various games and it’s web player allows to play these games (unity3d extension) also directly from the web browser.
Heap corruption caused by a negative 32bit size value which allows to execute malicious code.
The provided proof-of-concept is not optimized but should show a write4 and, (tested on Firefox) EIP pointing to an invalid memory zone.

Exploit-DB updates