Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-38178 PoC — Scripting Engine Memory Corruption Vulnerability

Source
https://github.com/uixss/PoC-CVE-2024-38178
Associated Vulnerability
Title:Scripting Engine Memory Corruption Vulnerability (CVE-2024-38178)
Description:Scripting Engine Memory Corruption Vulnerability
Description
A comprehensive analysis of the executing the malicious code without any user interaction
Readme

#Group123, after infiltrating an advertising company's server, deployed a backdoor using the IE 0day exploit CVE-2024-38178 within ad scripts. This strategy enables a zero-click attack as the ads are served, executing the malicious code without any user interaction.


https://github.com/blackorbird/APT_REPORT/blob/master/group123/(%E1%84%8C%E1%85%A5%E1%86%AB%E1%84%8E%E1%85%A6%E1%84%87%E1%85%A9%E1%86%AB)%E1%84%80%E1%85%A9%E1%86%BC%E1%84%80%E1%85%A2%E1%84%87%E1%85%A9%E1%84%80%E1%85%A9%E1%84%89%E1%85%A5-OperationCodeonToast.pdf

https://asec.ahnlab.com/ko/83876/
File Snapshot

 [4.0K]  /data/pocs/73c8d07be7a4da7b2f78fedf6f471221cf115c96
└── [ 567]  README.md

0 directories, 1 file
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →