Skip to content

theori-io/chakra-2016-11

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits

exploit

exploit

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

Repository files navigation

chakra.dll Info Leak + Type Confusion for RCE

Proof-of-Concept exploit for Edge bugs (CVE-2016-7200 & CVE-2016-7201)

Tested on Windows 10 Edge (modern.ie stable).

FillFromPrototypes_TypeConfusion.html: WinExec notepad.exe

FillFromPrototypes_TypeConfusion_NoSC.html: 0xcc (INT 3)

To run

  1. Download exploit/FillFromPrototypes_TypeConfusion.html to a directory.
  2. Serve the directory using a webserver (or python's simple HTTP server).
  3. Browse with a victim IE to FillFromPrototypes_TypeConfusion.html.

About

Proof-of-Concept exploit for Edge bugs (CVE-2016-7200 & CVE-2016-7201)

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

139 stars

Watchers

17 watching

Forks

52 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages