CVE-2021-21156&CVE-2021-21148 Chrome Array Transfer 繞過漏洞

From PwnWiki
Revision as of 13:05, 15 May 2021 by Pwnwiki (talk | contribs) (Created page with "==INFO== <pre> The fix for CVE-2021-21148 has added a check in |ValueSerializer::WriteJSArrayBuffer| to make sure non-detachable array buffers cannot be transferred. The check...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

INFO

The fix for CVE-2021-21148 has added a check in |ValueSerializer::WriteJSArrayBuffer| to make sure non-detachable array buffers cannot be transferred. The check can be bypassed with the help of asm.js and property getters.

File

https://github.com/JustYoomoon/Exploit/blob/main/GS20210514135013.tgz

Retrieved from "https://pwnwiki.com/index.php?title=CVE-2021-21156%26CVE-2021-21148_Chrome_Array_Transfer_繞過漏洞&oldid=2868"