CVE-2018-4878 PoC — Adobe Flash Player 安全漏洞

Source

https://github.com/demonsec666/CVE-2018-4878

Associated Vulnerability

Title:Adobe Flash Player 安全漏洞 (CVE-2018-4878)
Description:A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player handling of listener objects. A successful attack can lead to arbitrary code execution. This was exploited in the wild in January and February 2018.

Description

Aggressor Script to just launch IE driveby for CVE-2018-4878

Readme

Author and Credits
==================
Author: Vincent Yiu (@vysecurity)

Credits:
   - @evi1cg: Helping me test and keep me motivated
   - @smgoreli: Original Calc.exe PoC
   - @kbandla: He knows, and I know. ;)

Disclaimer
==========
Developed to encourage more Aggressor script development. Use only in authorized penetration testing!

Description
===========

Aggressor Script to launch an Internet Explorer driveby attack using CVE-2018-4878 exploit for Shockwave Flash player versions before February 2017.

Usage:
======

Video Demonstration: <https://www.youtube.com/watch?v=JhUlOIEdq0s>

* Click Host > Host CVE-2018-4878 Payload > Host
* Send link to victim or embed as part of other pages or a redirect
* Victim hits link with IE and outdated flash, you get a shell back in IE sandbox.


CobaltStrike
============

* Load CVE-2018-4878.cna

File Snapshot


 [4.0K]  /data/pocs/f8e2d9621713fbefc05a5349f0d66ca6c268b28a
├── [ 60K]  CVE-2018-4878.cna
└── [ 849]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!