Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2017-11907 PoC — Microsoft Windows Internet Explorer scripting引擎安全漏洞

Source
https://github.com/AV1080p/CVE-2017-11907
Associated Vulnerability
Title:Microsoft Windows Internet Explorer scripting引擎安全漏洞 (CVE-2017-11907)
Description:Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to gain the same user rights as the current user, due to how Internet Explorer handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11886, CVE-2017-11889, CVE-2017-11890, CVE-2017-11893, CVE-2017-11894, CVE-2017-11895, CVE-2017-11901, CVE-2017-11903, CVE-2017-11905, CVE-2017-11905, CVE-2017-11908, CVE-2017-11909, CVE-2017-11910, CVE-2017-11911, CVE-2017-11912, CVE-2017-11913, CVE-2017-11914, CVE-2017-11916, CVE-2017-11918, and CVE-2017-11930.
Description
Windows: heap overflow in jscript.dll in Array.sort
Readme
# CVE-2017-11907

aPAColypse now: Exploiting Windows 10 in a Local Network with WPAD/PAC and JScript

https://googleprojectzero.blogspot.jp/2017/12/apacolypse-now-exploiting-windows-10-in_18.html

Windows: heap overflow in jscript.dll in Array.sort

https://bugs.chromium.org/p/project-zero/issues/detail?id=1383
File Snapshot

 [4.0K]  /data/pocs/2c6dc37552644c209e6c92b91cbeb1d012c7966b
├── [4.0K]  OxidResolver.NoStdLib.Compile.With.Sizeoptimized
│   ├── [4.0K]  OxidResolver
│   │   ├── [ 15K]  OxidResolver.cpp
│   │   ├── [ 11K]  OxidResolver.vcxproj
│   │   ├── [1.5K]  OxidResolver.vcxproj.filters
│   │   ├── [ 165]  OxidResolver.vcxproj.user
│   │   ├── [ 23K]  resolver_c.c
│   │   ├── [5.2K]  resolver_h.h
│   │   ├── [3.1K]  resolver.idl
│   │   ├── [ 19K]  resolver_s.c
│   │   ├── [ 304]  stdafx.cpp
│   │   ├── [ 327]  stdafx.h
│   │   └── [ 314]  targetver.h
│   ├── [1.8K]  OxidResolver.sln
│   └── [  59]  README.md
├── [ 423]  PoC_for_IE.js
├── [ 313]  README.md
└── [ 66K]  wpad.dat

2 directories, 16 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →