Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-42961 PoC — Apple iOS和Apple iPadOS 安全漏洞

Source
https://github.com/windz3r0day/CVE-2023-42961
Associated Vulnerability
Title:Apple iOS和Apple iPadOS 安全漏洞 (CVE-2023-42961)
Description:A path handling issue was addressed with improved validation. This issue is fixed in iOS 17 and iPadOS 17, iOS 16.7 and iPadOS 16.7, macOS Sonoma 14, macOS Ventura 13.6, macOS Monterey 12.7. A sandboxed process may be able to circumvent sandbox restrictions.
Readme
# CVE-2023-42961
- intents_helper.xpc Sandbox Escape
## Credits

This PoC is based on the original research by Mickey Jin.

- Original discovery and development: [Mickey Jin](https://www.youtube.com/watch?v=X0fv3x6bmF8)
- This version is adapted for local testing and educational use.
File Snapshot

 [4.0K]  /data/pocs/a7b769c86eafa8a836734bec4388cb53a3efef09
├── [4.0K]  CVE-2023-42961
│   ├── [4.0K]  CVE-2023-42961
│   │   ├── [  93]  AppDelegate.h
│   │   ├── [ 443]  AppDelegate.m
│   │   ├── [4.0K]  Assets.xcassets
│   │   │   ├── [4.0K]  AccentColor.colorset
│   │   │   │   └── [ 123]  Contents.json
│   │   │   ├── [4.0K]  AppIcon.appiconset
│   │   │   │   └── [ 904]  Contents.json
│   │   │   └── [  63]  Contents.json
│   │   ├── [4.0K]  Base.lproj
│   │   │   └── [ 62K]  Main.storyboard
│   │   ├── [ 310]  CVE_2023_42961.entitlements
│   │   ├── [ 214]  main.m
│   │   ├── [ 131]  ViewController.h
│   │   └── [1.4K]  ViewController.m
│   └── [4.0K]  CVE-2023-42961.xcodeproj
│       ├── [ 11K]  project.pbxproj
│       ├── [4.0K]  project.xcworkspace
│       │   ├── [ 135]  contents.xcworkspacedata
│       │   └── [4.0K]  xcuserdata
│       │       └── [4.0K]  mikhail.xcuserdatad
│       │           └── [ 30K]  UserInterfaceState.xcuserstate
│       └── [4.0K]  xcuserdata
│           └── [4.0K]  mikhail.xcuserdatad
│               └── [4.0K]  xcschemes
│                   └── [ 349]  xcschememanagement.plist
└── [ 285]  README.md

13 directories, 15 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →