CVE-2019-8591 PoC — 多款Apple产品Kernel组件安全漏洞

Source

https://github.com/jsherman212/used_sock

Associated Vulnerability

Title:多款Apple产品Kernel组件安全漏洞 (CVE-2019-8591)
Description:Apple iOS等都是美国苹果（Apple）公司的产品。Apple iOS是一套为移动设备所开发的操作系统。Apple tvOS是一套智能电视操作系统。Kernel是其中的一个内核。Apple watchOS是一套智能手表操作系统。多款Apple产品中的Kernel组件存在类型混淆漏洞。攻击者可利用该漏洞造成系统意外终止或对内核内存进行写入操作。以下产品及版本受到影响：Apple iOS 12.3之前版本；macOS Mojave 10.14.5之前版本；tvOS 12.3之前版本；watchOS 5

Description

tfp0 based on CVE-2019-8591/CVE-2019-8605

Readme

# used_sock

Kernel exploit for iOS 12-12.2 and 12.4. This isn't meant to be used in a jailbreak.

You can find the writeup [here](https://jsherman212.github.io/used_sock/)

File Snapshot


 [4.0K]  /data/pocs/ae9aeb11f40ae4aa67cb4bd66e91c3467c3f81a8
├── [2.7K]  array.c
├── [ 942]  array.h
├── [ 34K]  exploit.c
├── [5.5K]  exploit.h
├── [1.5K]  LICENSE
└── [ 173]  README.md

0 directories, 6 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!