Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2018-6066 PoC — Google Chrome Blink 安全漏洞

Source
https://github.com/DISREL/Ring0VBA
Associated Vulnerability
Title:Google Chrome Blink 安全漏洞 (CVE-2018-6066)
Description:Google Chrome是美国谷歌(Google)公司开发的一款Web浏览器。Blink是美国谷歌(Google)公司和挪威欧朋(Opera Software)公司共同开发的一套浏览器排版引擎(渲染引擎)。 Google Chrome 65.0.3325.146之前版本中的Blink存在安全漏洞,该漏洞源于ResourceFetcher/ResourceLoader缺少CORS机制检查。远程攻击者可通过诱使用户访问特制的网站利用该漏洞泄露跨源的数据。
Description
CVE-2018-6066 using VBA
Readme
# Ring0VBA
CVE-2018-6606 using VBA - https://disrel.com/posts/Ring0VBA-Getting-Ring0-Using-a-Goddamn-Word-Document/
File Snapshot

 [4.0K]  /data/pocs/587c88398925c080cbbdcb4422f3a4361bd84e84
├── [ 116]  README.md
├── [7.7K]  Ring0VBA.vba
└── [199K]  zam64.sys

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.