Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2016-1734 PoC — Apple iOS AppleUSBNetworking 任意代码执行漏洞

Source
https://github.com/Manouchehri/CVE-2016-1734
Associated Vulnerability
Title:Apple iOS AppleUSBNetworking 任意代码执行漏洞 (CVE-2016-1734)
Description:AppleUSBNetworking in Apple iOS before 9.3 and OS X before 10.11.4 allows physically proximate attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted USB device.
Readme
The patch is not in `AppleUSBNetworking.kext` like the security advisory suggested (https://support.apple.com/en-ca/HT206166).

```
~/CVE-2016-1734 > md5sum ./10.11.1/AppleUSBNetworking.kext/Contents/MacOS/AppleUSBNetworking.c ./10.11.5/AppleUSBNetworking.kext/Contents/MacOS/AppleUSBNetworking.c
4d297d692f49f12621b0218364486ac0  ./10.11.1/AppleUSBNetworking.kext/Contents/MacOS/AppleUSBNetworking.c
4d297d692f49f12621b0218364486ac0  ./10.11.5/AppleUSBNetworking.kext/Contents/MacOS/AppleUSBNetworking.c
```

![BinDiff](https://github.com/Manouchehri/CVE-2016-1734/blob/master/2016-06-03-05:32:46-screenshot.png)
File Snapshot

 [4.0K]  /data/pocs/348a6c7feafbe4730eeb3867e642e4ed260aa294
├── [4.0K]  10.11.1
│   └── [4.0K]  AppleUSBNetworking.kext
│       └── [4.0K]  Contents
│           ├── [4.0K]  _CodeSignature
│           │   └── [2.1K]  CodeResources
│           ├── [1.7K]  Info.plist
│           ├── [4.0K]  MacOS
│           │   ├── [ 43K]  AppleUSBNetworking
│           │   ├── [ 84K]  AppleUSBNetworking.asm
│           │   └── [ 51K]  AppleUSBNetworking.c
│           └── [ 472]  version.plist
├── [4.0K]  10.11.2
│   └── [4.0K]  AppleUSBNetworking.kext
│       └── [4.0K]  Contents
│           ├── [4.0K]  _CodeSignature
│           │   └── [2.1K]  CodeResources
│           ├── [1.7K]  Info.plist
│           ├── [4.0K]  MacOS
│           │   ├── [ 43K]  AppleUSBNetworking
│           │   ├── [114K]  AppleUSBNetworking.asm
│           │   └── [ 51K]  AppleUSBNetworking.c
│           └── [ 471]  version.plist
├── [4.0K]  10.11.3
│   └── [4.0K]  AppleUSBNetworking.kext
│       └── [4.0K]  Contents
│           ├── [4.0K]  _CodeSignature
│           │   └── [2.1K]  CodeResources
│           ├── [1.7K]  Info.plist
│           ├── [4.0K]  MacOS
│           │   ├── [ 43K]  AppleUSBNetworking
│           │   ├── [114K]  AppleUSBNetworking.asm
│           │   └── [ 51K]  AppleUSBNetworking.c
│           └── [ 471]  version.plist
├── [4.0K]  10.11.4
│   └── [4.0K]  AppleUSBNetworking.kext
│       └── [4.0K]  Contents
│           ├── [4.0K]  _CodeSignature
│           │   └── [2.1K]  CodeResources
│           ├── [1.7K]  Info.plist
│           ├── [4.0K]  MacOS
│           │   ├── [ 43K]  AppleUSBNetworking
│           │   ├── [116K]  AppleUSBNetworking.asm
│           │   └── [ 51K]  AppleUSBNetworking.c
│           └── [ 471]  version.plist
├── [4.0K]  10.11.5
│   └── [4.0K]  AppleUSBNetworking.kext
│       └── [4.0K]  Contents
│           ├── [4.0K]  _CodeSignature
│           │   └── [2.1K]  CodeResources
│           ├── [1.7K]  Info.plist
│           ├── [4.0K]  MacOS
│           │   ├── [ 43K]  AppleUSBNetworking
│           │   ├── [116K]  AppleUSBNetworking.asm
│           │   └── [ 51K]  AppleUSBNetworking.c
│           └── [ 472]  version.plist
├── [ 67K]  2016-06-03-05:32:46-screenshot.png
└── [ 616]  README.md

25 directories, 32 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →