CVE-2023-41991 PoC — Apple watchOS 信任管理问题漏洞

Source

Associated Vulnerability

Title:Apple watchOS 信任管理问题漏洞 (CVE-2023-41991)
Description:Apple watchOS是美国苹果（Apple）公司的一套智能手表操作系统。 Apple watchOS 9.6.3之前版本存在信任管理问题漏洞，该漏洞源于恶意应用程序可能能够绕过签名验证。

Description

iOS/macOS library that exploits CVE-2023-41991 for signing iOS applications.

File Snapshot


 [4.0K]  /data/pocs/508af38a85df094c285f15d89063087e70581c1e
├── [4.0K]  external
│   └── [4.0K]  ios
│       └── [ 38M]  libcrypto.a
├── [4.0K]  include
│   ├── [ 154]  codesign.h
│   └── [ 108]  ct_bypass.h
├── [2.7K]  Makefile
├── [   0]  README.md
├── [4.0K]  src
│   ├── [8.2K]  codesign.m
│   ├── [ 16K]  ct_bypass.c
│   ├── [ 205]  file.c
│   ├── [  59]  file.h
│   ├── [3.9K]  main.m
│   └── [4.0K]  templates
│       ├── [196K]  AppStoreCodeDirectory.h
│       ├── [ 18K]  CADetails.h
│       ├── [1.3K]  DERTemplate.h
│       └── [ 27K]  TemplateSignatureBlob.h
└── [4.0K]  third-party
    └── [4.0K]  ChOma

7 directories, 14 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!