Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-11932 PoC — Facebook WhatsApp 资源管理错误漏洞

Source
https://github.com/kal1gh0st/WhatsAppHACK-RCE
Associated Vulnerability
Title:Facebook WhatsApp 资源管理错误漏洞 (CVE-2019-11932)
Description:Facebook WhatsApp是美国Facebook公司的一套利用网络传送短信的移动应用程序。该应用程序通过智能手机中的联络人信息,查找使用该软件的联络人传送文字、图片等。 基于Android平台的Facebook WhatsApp 2.19.244之前版本中的libpl_droidsonroids_gif 1.2.18之前版本的decoding.c文件的DDGifSlurp函数存在资源管理错误漏洞。远程攻击者可利用该漏洞执行任意代码或造成拒绝服务。
Description
Whatsapp remote code execution CVE-2019-11932 https://awakened1712.github.io/hacking/hacking-whatsapp-gif-rce/
Readme
# WhatsAppHACK-RCE
![immagine](https://user-images.githubusercontent.com/56889513/117024933-bbf30700-acfa-11eb-8b1d-1854eb8e0a42.png)
File Snapshot

 [4.0K]  /data/pocs/90f4c5bf7da9c510cd8bbd28c8783dd4a8adf4d3
├── [ 134]  README.md
├── [4.0K]  whatsapp_hack
│   ├── [2.0K]  grabber.py
│   ├── [1.0K]  LICENSE
│   ├── [1.1K]  README.md
│   ├── [  29]  requirements.txt
│   ├── [1.2K]  server.py
│   ├── [4.0K]  templates
│   │   ├── [ 23K]  WhatsApp copia.html
│   │   └── [ 15K]  WhatsApp.html
│   └── [4.0K]  WhatsApp_files
│       ├── [ 12K]  css
│       ├── [341K]  cssm_802389b838f35c577965ddb36e9efafe.css
│       ├── [ 482]  qreload.js
│       └── [  69]  style_f8c40d12edbd6fe7b2cd055344892b0e.css
├── [4.0K]  whatsapp-messages-hack
│   ├── [4.0K]  css
│   │   └── [ 14K]  app.min.css
│   ├── [4.0K]  img
│   │   ├── [366K]  bg.svg
│   │   ├── [ 22K]  favicon.png
│   │   └── [291K]  meta.jpg
│   ├── [ 32K]  index.html
│   ├── [4.0K]  js
│   │   ├── [2.4K]  app.min.js
│   │   └── [ 55K]  plugins.min.js
│   ├── [180K]  preview.png
│   └── [2.8K]  README.md
├── [4.0K]  whatsapp_rce
│   ├── [3.3K]  egif_lib.c
│   ├── [ 11K]  gif_lib.h
│   ├── [1.9K]  README.md
│   └── [6.5K]  start.sh
└── [4.0K]  whatshack
    ├── [4.0K]  app
    │   ├── [4.0K]  app
    │   │   ├── [1.2K]  build.gradle
    │   │   ├── [4.0K]  libs
    │   │   │   ├── [ 50K]  activation.jar
    │   │   │   ├── [ 45K]  additionnal.jar
    │   │   │   ├── [735K]  commons-collections4-4.2.jar
    │   │   │   ├── [210K]  commons-io-2.6.jar
    │   │   │   └── [430K]  mail.jar
    │   │   ├── [  16]  proguard-rules.pro
    │   │   └── [4.0K]  src
    │   │       └── [4.0K]  main
    │   │           ├── [ 821]  AndroidManifest.xml
    │   │           ├── [4.0K]  java
    │   │           │   └── [4.0K]  com
    │   │           │       └── [4.0K]  whatshack
    │   │           │           └── [4.4K]  MainActivity.java
    │   │           └── [4.0K]  res
    │   │               ├── [4.0K]  drawable
    │   │               │   ├── [ 240]  arrow.png
    │   │               │   ├── [ 220]  backspace.png
    │   │               │   ├── [ 266]  downleft.png
    │   │               │   ├── [ 594]  keyback.xml
    │   │               │   └── [ 252]  up.png
    │   │               ├── [4.0K]  layout
    │   │               │   └── [ 412]  activity_main.xml
    │   │               ├── [4.0K]  mipmap-hdpi
    │   │               │   └── [3.3K]  ic_launcher.png
    │   │               ├── [4.0K]  mipmap-mdpi
    │   │               │   └── [2.2K]  ic_launcher.png
    │   │               ├── [4.0K]  mipmap-xhdpi
    │   │               │   └── [4.7K]  ic_launcher.png
    │   │               ├── [4.0K]  mipmap-xxhdpi
    │   │               │   └── [7.5K]  ic_launcher.png
    │   │               ├── [4.0K]  mipmap-xxxhdpi
    │   │               │   └── [ 10K]  ic_launcher.png
    │   │               └── [4.0K]  values
    │   │                   └── [ 221]  strings.xml
    │   ├── [4.0K]  build
    │   │   └── [4.0K]  intermediates
    │   │       └── [4.0K]  lint-cache
    │   │           ├── [2.9M]  api-versions-8-28.bin
    │   │           ├── [ 51K]  typos-de.txt-2.bin
    │   │           ├── [101K]  typos-en.txt-2.bin
    │   │           ├── [8.6K]  typos-es.txt-2.bin
    │   │           ├── [1.3K]  typos-hu.txt-2.bin
    │   │           ├── [7.2K]  typos-it.txt-2.bin
    │   │           ├── [2.3K]  typos-nb.txt-2.bin
    │   │           ├── [ 32K]  typos-pt.txt-2.bin
    │   │           └── [5.3K]  typos-tr.txt-2.bin
    │   ├── [ 498]  build.gradle
    │   ├── [4.0K]  gradle
    │   │   └── [4.0K]  wrapper
    │   │       ├── [ 52K]  gradle-wrapper.jar
    │   │       └── [ 233]  gradle-wrapper.properties
    │   ├── [ 700]  gradle.properties
    │   ├── [4.9K]  gradlew
    │   ├── [2.3K]  gradlew.bat
    │   ├── [2.2K]  key.keystore
    │   ├── [  26]  local.properties
    │   ├── [  15]  settings.gradle
    │   └── [ 579]  upload_files.php
    ├── [ 34K]  LICENSE
    ├── [2.3K]  README.md
    └── [ 16K]  whatshack.sh

31 directories, 68 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.