CVE-2023-4357 PoC — Google Chrome 安全漏洞

Source

https://github.com/lon5948/CVE-2023-4357-Exploitation

Associated Vulnerability

Title:Google Chrome 安全漏洞 (CVE-2023-4357)
Description:Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to bypass file access restrictions via a crafted HTML page. (Chromium security severity: Medium)

Description

Network Security Project

Readme

# CVE-2023-4357-Exploitation
Network Security Project

### Description
Insufficient validation of untrusted input in XML in Google Chrome prior to 116.0.5845.96 allowed a remote attacker to bypass file access restrictions via a crafted HTML page. 

### Reproduce

#### Set up the Environment

- Download Chrome on Linux

```bash!
$ wget https://edgedl.me.gvt1.com/edgedl/chrome/chrome-for-testing/114.0.5735.90/linux64/chrome-linux64.zip

$ unzip chrome-linux64.zip
```

- Execute

```bash!
$ ./chrome-linux64/chrome --no-sandbox
```

#### Start a Web Server

- prepare an SVG file to exploit the vulnerability
- prepare a bash script for starting the http server
- execute the script

```bash!
$ chmod +x start_server.sh

$ ./start_server.sh
```

#### Access the Browser
access the d.svg file on Chrome by navigating to localhost on port 8888

```bash
http://127.0.0.1:8888/d.svg
```

### Reference
- [link](https://github.com/xcanwin/CVE-2023-4357-Chrome-XXE)

File Snapshot


 [4.0K]  /data/pocs/66b427a3435454c83194a1f378da3b9bd82ef30d
├── [4.0K]  Docs
│   ├── [1.3M]  report.pdf
│   └── [145K]  spec.pdf
├── [ 962]  README.md
└── [4.0K]  src
    ├── [1.1K]  d.svg
    └── [  40]  start_server.sh

2 directories, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!