CVE-2022-4262 PoC — Google Chrome 安全漏洞

Source

https://github.com/mistymntncop/CVE-2022-4262

Associated Vulnerability

Title:Google Chrome 安全漏洞 (CVE-2022-4262)
Description:Google Chrome是美国谷歌（Google）公司的一款Web浏览器。 Google Chrome 108.0.5359.94 之前版本存在安全漏洞，该漏洞源于V8 类型混淆，攻击者利用该漏洞可以通过精心设计的 HTML 页面潜在地利用堆损坏。

Readme

Exploit for CVE-2022-4262
=====================
- Official Chromium [bug report][1].
- Shoutout to [@_clem1](https://twitter.com/_clem1) for [finding the ITW exploit][2].
- Shoutout to [@5aelo](https://twitter.com/5aelo) for his [RCA on the bug][3].
- Shoutout to [@bjrjk](https://twitter.com/bjrjk) for his [super indepth RCA on the bug][4].
- Shoutout to [@alisaesage](https://twitter.com/alisaesage) for her [video on the bug][5].

[1]: https://bugs.chromium.org/p/chromium/issues/detail?id=1394403
[2]: https://chromereleases.googleblog.com/2022/12/stable-channel-update-for-desktop.html
[3]: https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2022/CVE-2022-4262.html
[4]: https://github.com/bjrjk/CVE-2022-4262/blob/main/CVE-2022-4262.md
[5]: https://youtu.be/WouAptHlyC4?t=2078

File Snapshot


 [4.0K]  /data/pocs/9a65f5504272727c6a77a4eddccb291ed0f892a2
├── [1.7K]  after GC.txt
├── [1.8K]  before GC.txt
├── [ 507]  dbg.patch
├── [ 11K]  exploit.js
├── [ 14K]  ic.js
├── [ 811]  README.md
└── [3.0K]  test.js

0 directories, 7 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!