In this article, we delve into the intricacies of a recently discovered vulnerability in Google Chrome, identified as CVE-2023-4427.
Discovered by glazunov and originating from the v8ctf platform, this vulnerability poses significant risks to users of Chrome version 117.0.5938.62 on Linux systems.
We explore the methods utilized to exploit this vulnerability, including bypassing Address Space Layout Randomization (ASLR) and potential mitigation strategies.
CVE-2023-4427 was found by glazunov, and you can find RCA in his report
chrome version: 117.0.5938.62 in linux from v8ctf. I choose a very unstable method. To bypass ASLR, use many iframes with different domains in main.html to brute high address, you can change your /etc/hosts to implement that locally, if you are a ctfer, you should know it’s 1/256 lol, or if ASLR is disabled for debug, you can set bbbase in #L210 to const.
Of course there are some more stable methods like use JIT code in area of WASM. The exp for v8 is lost, but it’s easier than chrome version, understand RCA and you can solve it by yourself.
More detailed writeup is coming soon(MAYBE)
bevigil-cli provides a unified command line interface and python library for using BeVigil OSINT API. BeVigil…
Explore the comprehensive world of Open-Source Intelligence (OSINT) with our curated list of active links…
BBOT (Bighuge BLS OSINT Tool) is a recursive internet scanner inspired by Spiderfoot, but designed to…
Andriller - is software utility with a collection of forensic tools for smartphones. It performs…
Designed as a full-stack web application, this tool amalgamates a plethora of services to streamline…
Tools and packages that are used for countering forensic activities, including encryption, steganography, and anything…