CVE-2019-11932 PoC — Facebook WhatsApp 资源管理错误漏洞

Source

https://github.com/TulungagungCyberLink/CVE-2019-11932

Associated Vulnerability

Title:Facebook WhatsApp 资源管理错误漏洞 (CVE-2019-11932)
Description:A double free vulnerability in the DDGifSlurp function in decoding.c in the android-gif-drawable library before version 1.2.18, as used in WhatsApp for Android before version 2.19.244 and many other Android applications, allows remote attackers to execute arbitrary code or cause a denial of service when the library is used to parse a specially crafted GIF image.

Description

Double-Free BUG in WhatsApp exploit poc.

Readme

# CVE-2019-11932
 Double-Free bug in WhatsApp exploit poc.
 
 #Note: Make sure to set the listner ip in exploit.c inorder to get shell
 
 - nc -lvp 1337 or whatever port.
 
 - and then compile.
 
 - make
 
 - or 
 
 - gcc -o exploit egif_lib.c exploit.c
 
 - then run ./exploit and save the content to <filename>.gif
 
 - and send to victim.
 
 ### Source
 https://awakened1712.github.io/hacking/hacking-whatsapp-gif-rce/.
 
 ### Poc_Video
 https://drive.google.com/file/d/1XP7K5zkKEhmbEONvRpjrkTQ5pwpBc6G_/view?usp=sharing
         
 
 
 I don't own this , if you have issues please contact the owner

File Snapshot


 [4.0K]  /data/pocs/5e3d028489f547c8b23e0123c1f23c534315c20c
├── [3.3K]  egif_lib.c
├── [5.2K]  exploit.c
├── [ 11K]  gif_lib.h
├── [1.2K]  LICENSE
├── [  42]  MakeFile
└── [ 609]  README.md

0 directories, 6 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!