CVE-2018-6065 PoC — Google Chrome V8 数字错误漏洞

Source

https://github.com/b1tg/CVE-2018-6065-exploit

Associated Vulnerability

Title:Google Chrome V8 数字错误漏洞 (CVE-2018-6065)
Description:Google Chrome是美国谷歌（Google）公司开发的一款Web浏览器。V8是其中的一套开源JavaScript引擎。 Google Chrome 65.0.3325.146之前版本中的V8存在整数溢出漏洞。远程攻击者可通过诱使用户访问特制的网站利用该漏洞在系统上执行任意代码或造成拒绝服务（堆损坏）。

Readme

# Chrome V8 CVE-2018-6065 Exploit



Analysis blog post: https://b1tg.github.io/post/cve-2018-6065-analysis


```bash
git reset 0407506af3d9d7e2718be1d8759296165b218fcf  --hard
gclient sync -f
tools/dev/v8gen.py x64.debug
ninja -C out.gn/x64.debug

tools/dev/v8gen.py x64.release
ninja -C out.gn/x64.release
```
Test on Ubuntu 18.04 and Ubuntu 20.10


![xcalc](final.png)

File Snapshot


 [4.0K]  /data/pocs/fd3168b80045214897d57169351420e5f90ac17c
├── [4.0K]  chrome.js
├── [7.8K]  exploit.html
├── [7.3K]  final.js
├── [197K]  final.png
├── [ 460]  poc.js
└── [ 376]  README.md

0 directories, 6 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!