Skip to content

exodusintel/CVE-2019-0808

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commits

FullChainChromeExploit

FullChainChromeExploit

 
 

host1_wrapper

host1_wrapper

 
 

host2_single_run

host2_single_run

 
 

FullChainChromeExploit.dll

FullChainChromeExploit.dll

 
 

README.md

README.md

 
 

Repository files navigation

CVE-2019-5786 and CVE-2019-0808 Chrome 72.0.3626.119 stable Windows 7 x86 exploit chain.

This exploit uses site-isolation to brute-force CVE-2019-5786. host1_wrapper/iframe.html is the wrapper script that loads the exploit repeatedly into an iframe. The actual chain resides in the host2_single_run directory. The sandbox escape exploit for CVE-2019-0808 is in the file host2_single_run/shellcode.js, converted from its .dll form via [sRDI][https://github.com/monoxgas/sRDI] and msfvenom.

  • serve the contents of the host1_wrapper directory on one site and the contents of host2_single_run on another
  • change line 14 in host1_wrapper/iframe.html to the URL of host2_single_run/exploit.html
  • navigate to iframe.html

About

Win32k Exploit by Grant Willcox

Resources

Readme
Activity

Stars

90 stars

Watchers

8 watching

Forks

42 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages