Skip to content

ChiChou/sploits

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
1 branch 0 tags
Code

Latest commit

@ChiChou
ChiChou Update README.md
e6964ba Jan 10, 2021
Update README.md
e6964ba

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
CVE-2018-4310
typo
June 2, 2019 22:10
CVE-2018-4991
cleanup code style
April 15, 2019 16:06
CVE-2018-8412
cleanup code style
April 15, 2019 16:06
CVE-2019-8513
cleanup code style
April 15, 2019 16:06
CVE-2019-8565
clean up code
May 15, 2019 16:28
CVE-2020-9979
add MobileAsset poc
January 10, 2021 15:40
ModJack
add 10.13.x kernel privilege escalation
May 13, 2019 16:44
NotByMe/CVE-2019-xxxx
Update README.md
May 18, 2019 00:54
up-to-10.13.6-sbx
add CoreFoundation sandbox escape
March 14, 2020 21:36
.clang-format
cleanup code style
April 15, 2019 16:06
.gitignore
add README
May 15, 2019 22:06
.gitmodules
add 10.13.x kernel privilege escalation
May 13, 2019 16:44
README.md
Update README.md
January 10, 2021 15:41

README.md

sploits

  • CVE-2018-4310 MediaRemote: An access issue was addressed with additional sandbox restrictions

  • CVE-2018-4991 Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable Improper certificate validation vulnerability. Successful exploitation could lead to a security bypass

  • CVE-2018-8412 An elevation of privilege vulnerability exists when the Microsoft AutoUpdate (MAU) application for Mac improperly validates updates before executing them, aka "Microsoft (MAU) Office Elevation of Privilege Vulnerability." This affects Microsoft Office

  • CVE-2019-8513 TimeMachine: A local user may be able to execute arbitrary shell commands

  • CVE-2019-8530 XPC: A malicious application may be able to overwrite arbitrary files

  • CVE-2019-8521 Feedback Assistant: A malicious application may be able to overwrite arbitrary files

  • CVE-2019-8565 Feedback Assistant: A malicious application may be able to gain root privileges

  • ModJack Root to kernel privilege escalation on macOS 10.13.x. No CVE assigned.

  • CVE-2020-9979 Assets: An attacker may be able to misuse a trust relationship to download malicious content

About

PoC

Resources

Readme
Activity

Stars

211 stars

Watchers

14 watching

Forks

47 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

Languages