DimitriFourny

2 exploits Active since Oct 2019

CVE-2019-2215 NOMISEC HIGH WORKING POC

Android Binder Use-After-Free Exploit

A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095

39 stars

CVSS 7.8

View Code

CVE-2019-6207 NOMISEC MEDIUM WORKING POC

Apple Iphone OS < 12.2 - Out-of-Bounds Read

An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout.

30 stars

CVSS 5.5

View Code