CVE-2018-4407 PoC — 多款Apple产品 Kernel 缓冲区错误漏洞

Source

https://github.com/r3dxpl0it/CVE-2018-4407

Associated Vulnerability

Title:多款Apple产品 Kernel 缓冲区错误漏洞 (CVE-2018-4407)
Description:A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.

Description

IOS/MAC Denial-Of-Service [POC/EXPLOIT FOR MASSIVE ATTACK TO IOS/MAC IN NETWORK]

Readme

# CVE-2018-4407 Massive IOS/MAC Attack Exploit 
CVE-2018-4407 is a Simple and Very Fast BOF attack Against IOS/MAC that can lead to DOS. The vulnerability is a heap buffer overflow in the networking code in the XNU operating system kernel. XNU is used by both iOS and macOS, which is why iPhones, iPads, and Macbooks are all affected. 

##### Usage 
```
apt-get install nmap
git clone https://github.com/r3dxpl0it/CVE-2018-4407.git && cd CVE-2018-4407 && pip install -r requirements.txt
```
##### Options : 
```
usage: test.py [-h] [-s IP] [-p PLAYLOAD] target

positional arguments:
  target                Target Ip or Network Ip Range

optional arguments:
  -h, --help            show this help message and exit
  -s IP, --sourceip IP  Source Ip Adress
  -p PLAYLOAD, --payload PLAYLOAD
                        Number of Payload Loop
```
* "PlayLoad" is Not a Miss-Type Nor a Mistake, Just a Joke ;)
##### Screen : 
* This ScreenShot Has Been Taken from the "Virtual Lab". 
[![CVE-2018-4407](https://github.com/r3dxpl0it/CVE-2018-4407/blob/master/vb_sc.png)]

##### Disclaimer : 
* Read The Licence

File Snapshot

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!