exodusintel/CVE-2019-5786 exodusintel/CVE-2019-5786

  • Stars
    star
    260
  • Rank 156,275 (Top 4 %)
  • Language
    JavaScript
  • Created over 5 years ago
  • Updated over 5 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
exodusintel/CVE-2019-5786
github

exodusintel

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

FileReader Exploit

CVE-2019-5786 Chrome 72.0.3626.119 stable FileReader UaF exploit for Windows 7 x86.

This exploit uses site-isolation to brute-force the vulnerability. iframe.html is the wrapper script that loads the exploit, contained in the other files, repeatedly into an iframe.

  • host iframe.html on one site and exploit.html, exploit.js and wokrer.js on another. Change line 13 in iframe.html to the URL of exploit.html
  • start chrome with the --no-sandbox argument
  • navigate to iframe.html

More Repositories

1

Chromium-941743

Chrome v8 1Day Exploit by István Kurucsai
JavaScript
164
star
2

disclosures

Python
111
star
3

CVE-2019-0808

Win32k Exploit by Grant Willcox
JavaScript
90
star
4

Chrome-Issue-992914-Sealed-Frozen-Element-Kind-Type-Confusion-RCE-Exploit

September Chrome 1day by István Kurucsai
JavaScript
82
star
5

magellan_PoC

Magellan PoC
JavaScript
35
star
6

test

test description
1
star