• Stars
    star
    115
  • Rank 305,916 (Top 7 %)
  • Language
    HTML
  • License
    MIT License
  • Created over 8 years ago
  • Updated over 8 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Proof-of-Concept exploit for CVE-2016-0189 (VBScript Memory Corruption in IE11)

CVE-2016-0189

Proof-of-Concept exploit for CVE-2016-0189 (VBScript Memory Corruption in IE11)

Tested on Windows 10 IE11.

Write-up

http://theori.io/research/cve-2016-0189

To run

  1. Download support/*.dll (or compile *.cpp for yourself) and exploit/*.html to a directory.
  2. Serve the directory using a webserver (or python's simple HTTP server).
  3. Browse with a victim IE to vbscript_bypass_pm.html.
  4. (Re-fresh or re-open in case it doesn't work; It's not 100% reliable.)