theori-io/cve-2016-0189

Stars
115
Rank 304,193 (Top 7 %)
Language
HTML
License
MIT License
Created about 8 years ago
Updated about 8 years ago

theori-io/cve-2016-0189

theori-io

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Proof-of-Concept exploit for CVE-2016-0189 (VBScript Memory Corruption in IE11)

CVE-2016-0189

Proof-of-Concept exploit for CVE-2016-0189 (VBScript Memory Corruption in IE11)

Tested on Windows 10 IE11.

Write-up

http://theori.io/research/cve-2016-0189

To run

Download support/*.dll (or compile *.cpp for yourself) and exploit/*.html to a directory.
Serve the directory using a webserver (or python's simple HTTP server).
Browse with a victim IE to vbscript_bypass_pm.html.
(Re-fresh or re-open in case it doesn't work; It's not 100% reliable.)

pwnjs

A Javascript library for browser exploitation

nrsc5

NRSC-5 receiver for rtl-sdr

CVE-2022-32250-exploit

zer0con2018_bpak

Code and slides for Zer0Con 2018 talk: Building a 1-day Exploit for Google Chrome

chakra-2016-11

Proof-of-Concept exploit for Edge bugs (CVE-2016-7200 & CVE-2016-7201)

zer0con2018_singi

ctf

writeup from some ctfs

CVE-2022-26717-Safari-WebGL-Exploit

jscript9-typedarray

Proof-of-Concept exploit for jscript9 bug (MS16-063)

jscript9-typedarray-cfg

Proof-of-Concept exploit for jscript9 bug (MS16-063) with CFG Bypass

kr-crypto

Implementation of Korean Block Ciphers: NEAT and NES

v8-sbx-bypass-wasm

POC2019-BAOBAB

OpenTRS

Open Theori Research Seminar

SpeedHack-POC2017

Official write-up for Speed Hack event at POC2017

SSTF2019

Samsung Security Tech Forum (SSTF) 2019 Keynote (Korean)

web3-publications

Collection of Web3 Audits and Publications by ChainLight of Theori

django-entity-rbac

✨ Django Entity-Relationship-Based Access Control ✨

SpeedHack-POC2019

public-scripts

Handy scripts for pentesting (PUBLIC)

bevxcon_slides

aws-terraform-boost

AWS Proxy designed for performance boost of terraform plan

theori-io.github.io