CVE-2022-44789
HIGHArtifex MuJS 1.0.0-1.3.x - Remote Code Execution via Crafted JavaScript File
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2022-44789. PoCs published by alalng.
AI-analyzed exploit summary This repository contains a working exploit for CVE-2022-44789, targeting a use-after-free vulnerability in MuJS. The exploit leverages heap manipulation and memory corruption to achieve remote code execution (RCE) by bypassing pointer mangling and executing shellcode.
Description
A logical issue in O_getOwnPropertyDescriptor() in Artifex MuJS 1.0.0 through 1.3.x before 1.3.2 allows an attacker to achieve Remote Code Execution through memory corruption, via the loading of a crafted JavaScript file.
Exploits (1)
This repository contains a working exploit for CVE-2022-44789, targeting a use-after-free vulnerability in MuJS. The exploit leverages heap manipulation and memory corruption to achieve remote code execution (RCE) by bypassing pointer mangling and executing shellcode.
References (5)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H