◆◆0

CVE-2014-1303 Apple Safari 7.0.2 任意代码执行漏洞

PWNWIK.COM==免费、自由、人人可编辑的漏洞库

,

INFO

Heap-based buffer overflow in Apple Safari 7.0.2 allows remote attackers to execute arbitrary code and bypass a sandbox protection mechanism via unspecified vectors, as demonstrated by Liang Chen during a Pwn2Own competition at CanSecWest 2014.

Usage

$ python server.py
$ cd /path/to/webkitgtk2.1.2/
$ ./Programs/GtkLauncher http://localhost

POC

https://github.com/JustYoomoon/Exploit/blob/main/CVE-2014-1303.zip

免费、自由、人人可编辑的漏洞库--PwnWiki.com

返回顶部