Exploit chain for CVE-2019-9791 & CVE-2019-11708 against Firefox 65.0

Works against Firefox 65.0 on windows 64bit. CVE-2019-11708 part is taken from exploit by 0vercl0k:

https://github.com/0vercl0k/CVE-2019-11708

The exploit uses CVE-2019-9791 to obtain read/write primitive in content process then CVE-2019-11708 to make the main process load arbitrary url. In parent process CVE-2019-9791 is used again to obtain arbitrary code execution.

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
README.md		README.md
demo.gif		demo.gif
index.html		index.html
original_poc.js		original_poc.js
stage2.html		stage2.html

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

README.md

demo.gif

demo.gif

index.html

index.html

original_poc.js

original_poc.js

stage2.html

stage2.html

Repository files navigation

Exploit chain for CVE-2019-9791 & CVE-2019-11708 against Firefox 65.0

About

Releases

Packages

Languages

Sp0pielar/CVE-2019-9791

Folders and files

Latest commit

History

Repository files navigation

Exploit chain for CVE-2019-9791 & CVE-2019-11708 against Firefox 65.0

About

Resources

Stars

Watchers

Forks

Languages