crash.software
Projects
Pull Requests
Issues
Builds
CVE-2022-22639
Code
Files
Commits
Branches
Tags
Pull Requests
Code Comments
Code Compare
Issues
Builds
Statistics
Child Projects
cra.sh
RESTful API
Projects STRLCPY CVE-2022-22639 Commits 0eb7dec8
🤬
Revision indexing in progress... (symbol navigation in revisions will be accurate after indexed)
  • ■ ■ ■ ■ ■
    README.md
    1 1  # Details
    2 2  See Blog:
    3 3   
    4  -# Exploitation of CVE-2022-22617
     4 +# Exploitation of CVE-2022-22639
    5 5  1. Compile with command:
    6 6  `clang exploit.m -o /tmp/exploit -framework Foundation -fobjc-arc -fobjc-link-runtime /Applications/Xcode.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/System/Library/PrivateFrameworks/SoftwareUpdate.framework/Versions/A/SoftwareUpdate.tbd`
    7 7  2. Unzip **InstallAssistant.gz** to `/tmp` folder
    8 8  3. run `/tmp/exploit`
    9 9   
    10 10  # Demo
     11 +https://www.youtube.com/watch?v=-vbkTLHh874
    11 12   
Please wait...
Page is in error, reload to recover