CVE-2019-8641

This exploit leverages a deserialization vulnerability in NSKeyedUnarchiver's handling of NSSharedKeyDictionary objects, leading to an out-of-bounds memory read. The PoC demonstrates the issue via a crafted object file and includes steps to reproduce the crash in both iMessage and a macOS test program.

This repository contains a proof-of-concept exploit for CVE-2019-8641, a deserialization vulnerability in Apple's iMessage. The exploit leverages crafted NSKeyedArchiver payloads to achieve remote code execution via memory corruption.

The writeup details a deserialization vulnerability in macOS's NSUnarchiver API, where attacker-controlled data in iMessages can trigger a crash via NSSharedKeyDictionary and NSSharedKeySet manipulation. The analysis includes a technical breakdown of the exploit mechanism and a reference to a Proof of Concept.