mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
1.5 KiB
1.5 KiB
CVE-2018-12386
Description
A vulnerability in register allocation in JavaScript can lead to type confusion, allowing for an arbitrary read and write. This leads to remote code execution inside the sandboxed content process when triggered. This vulnerability affects Firefox ESR < 60.2.2 and Firefox < 62.0.3.
POC
Reference
- https://bugzilla.mozilla.org/show_bug.cgi?id=1493900
- https://bugzilla.mozilla.org/show_bug.cgi?id=1493900
Github
- https://github.com/0xLyte/cve-2018-12386
- https://github.com/0xT11/CVE-POC
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Hydra3evil/cve-2018-12386
- https://github.com/RUB-SysSec/JIT-Picker
- https://github.com/ZihanYe/web-browser-vulnerabilities
- https://github.com/googleprojectzero/fuzzilli
- https://github.com/lnick2023/nicenice
- https://github.com/m00zh33/sploits
- https://github.com/niklasb/sploits
- https://github.com/qazbnm456/awesome-cve-poc
- https://github.com/xbl3/awesome-cve-poc_qazbnm456
- https://github.com/zhangjiahui-buaa/MasterThesis