CVE-2018-4327

This repository contains a proof-of-concept exploit for CVE-2018-4327, targeting iOS Bluetooth services to manipulate the program counter (PC) register on SpringBoard and related services. The exploit requires user interaction (Bluetooth settings manipulation) and is based on prior research by @SparkZheng and @raniXCH.

This repository contains a writeup and references for a PoC targeting CVE-2018-4327, a vulnerability affecting iOS Bluetooth services. It describes an exploit that allows setting the ARM program counter (PC) register to an arbitrary value in SpringBoard and related services, tested on iPhone 6S running iOS 11.3.1.