NOMISEC-dorkerdevil/CVE-2019-11932

NOMISEC WORKING POC

Exploit for CVE-2019-11932 - android-gif-drawable <1.2.18 - RCE

AI Analysis

This repository contains a functional exploit for CVE-2019-11932, a double-free vulnerability in WhatsApp. The exploit generates a malicious GIF file that, when sent to a victim, triggers a double-free condition leading to remote code execution (RCE) via a crafted payload.

Attack Type

RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type poc

Files 4

https://github.com/dorkerdevil/CVE-2019-11932

Stars 268

Forks 75

Last Push Mar 19, 2021

Authors

dorkerdevil

Vulnerability

CVE-2019-11932

android-gif-drawable <1.2.18 - RCE

HIGH

CVSS 8.8