Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-11932 PoC — Facebook WhatsApp 资源管理错误漏洞

Source
https://github.com/tucommenceapousser/CVE-2019-11932
Associated Vulnerability
Title:Facebook WhatsApp 资源管理错误漏洞 (CVE-2019-11932)
Description:A double free vulnerability in the DDGifSlurp function in decoding.c in the android-gif-drawable library before version 1.2.18, as used in WhatsApp for Android before version 2.19.244 and many other Android applications, allows remote attackers to execute arbitrary code or cause a denial of service when the library is used to parse a specially crafted GIF image.
Description
Double-Free BUG in WhatsApp exploit poc.
Readme
# CVE-2019-11932
Double-Free BUG in WhatsApp exploit poc.
## Usage
```bash
bash create.sh
```
## clone on replit and run
[![Run on Replit](https://replit.com/badge/github/tucommenceapousser/CVE-2019-11932)](https://replit.com/github/tucommenceapousser/CVE-2019-11932)

## Manually
```bash
nc -lvp 5555 or whatever port.
```
and then compile.
```
gcc -o exp egif_lib.c exploit.c
```
then run 
```bash
./exp
```
 and save the content to .gif

and send to victim.
File Snapshot

 [4.0K]  /data/pocs/911a0a7d460111acdcdfc407f96b5279ca5150f4
├── [ 800]  create.sh
├── [3.3K]  egif_lib.c
├── [5.2K]  exploit.c
├── [ 11K]  gif_lib.h
├── [1.2K]  LICENSE
├── [  42]  MakeFile
├── [ 461]  README.md
└── [  81]  replit.nix

0 directories, 8 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →