CVE-2016-9066 PoC — Mozilla Firefox和Firefox ESR 安全漏洞

Source

Associated Vulnerability

Title:Mozilla Firefox和Firefox ESR 安全漏洞 (CVE-2016-9066)
Description:Mozilla Firefox和Firefox ESR都是美国Mozilla基金会开发的浏览器产品。Firefox是一款开源Web浏览器；Firefox ESR是Firefox的一个延长支持版本。 Mozilla Firefox 50之前的版本和Firefox ESR 45.5之前的版本中存在安全漏洞。攻击者可利用该漏洞绕过安全限制，执行未授权操作，获取敏感信息，绕过同源策略，执行任意代码。

Description

Exploit code for CVE-2016-9066

Readme

# Foxpwn

Proof-of-Concept exploit for CVE-2016-9066. Find a detailed writeup [here](https://saelo.github.io/posts/firefox-script-loader-overflow.html).

File Snapshot


 [4.0K]  /data/pocs/aeec9dfbada35bb1533e69a4849fc2c5b24a22d5
├── [ 17K]  code.js
├── [ 296]  index.html
├── [4.3K]  poc.py
├── [ 153]  README.md
└── [5.0K]  server.py

0 directories, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!