zer0con 2018 - singi
0x00. description
-
Target environment
- macOS 10.12.3 Sierra
- 8GB Ram
-
Used vulnerability
- CVE-2017-2547 : Safari Code Execution credit to @lokihardt
- CVE-2017-2540 : WindowServer Memory Leak credit to @fluorescence
- CVE-2017-2541 : WindowServer Code Execution credit to @fluorescence
-
full exploit code will upload soon (will change the shellcode for more simply.)