CVE-2018-4407 PoC — 多款Apple产品 Kernel 缓冲区错误漏洞

Source

Associated Vulnerability

Description

IOS/MAC Denial-Of-Service [POC/EXPLOIT FOR MASSIVE ATTACK TO IOS/MAC IN NETWORK]

Readme

# CVE-2018-4407 Massive IOS/MAC Attack Exploit 
CVE-2018-4407 is a Simple and Very Fast BOF attack Against IOS/MAC that can lead to DOS. The vulnerability is a heap buffer overflow in the networking code in the XNU operating system kernel. XNU is used by both iOS and macOS, which is why iPhones, iPads, and Macbooks are all affected. 

##### Usage 
```
apt-get install nmap
git clone https://github.com/r3dxpl0it/CVE-2018-4407.git && cd CVE-2018-4407 && pip install -r requirements.txt
```
##### Options : 
```
usage: test.py [-h] [-s IP] [-p PLAYLOAD] target

positional arguments:
  target                Target Ip or Network Ip Range

optional arguments:
  -h, --help            show this help message and exit
  -s IP, --sourceip IP  Source Ip Adress
  -p PLAYLOAD, --payload PLAYLOAD
                        Number of Payload Loop
```
* "PlayLoad" is Not a Miss-Type Nor a Mistake, Just a Joke ;)
##### Screen : 
* This ScreenShot Has Been Taken from the "Virtual Lab". 
[![CVE-2018-4407](https://github.com/r3dxpl0it/CVE-2018-4407/blob/master/vb_sc.png)]

##### Disclaimer : 
* Read The Licence

File Snapshot

 [4.0K]  /data/pocs/97ce349e1f3d97ac888567732570211a5ca0b278
├── [1.8K]  exploit.py
├── [ 34K]  LICENSE
├── [1.1K]  README.md
├── [  27]  requirements.txt
└── [112K]  vb_sc.png

0 directories, 5 files

Remarks