Apple watchOS 2 – Crash (PoC)

Exploit Database
91 阅读

作者： Mohammad Reza Espargham

日期： 2016-01-12
类别：
- dos
平台：
- hardware
来源：https://www.exploit-db.com/exploits/39225/

#[+] Title:Apple watchOS - Remote Crash Exploit
#[+] Product: Apple
#[+] Vendor: www.apple.com
#[+] SoftWare Link : www.apple.com/watchos-2/
#[+] Vulnerable Version(s): watchOS on IOS 9.0.1
#
#
# Author: Mohammad Reza Espargham
# Linkedin: https://ir.linkedin.com/in/rezasp
# E-Mail: me[at]reza[dot]es , reza.espargham[at]gmail[dot]com
# Website : www.reza.es
# Twitter : https://twitter.com/rezesp
# FaceBook: https://www.facebook.com/reza.espargham


#1. open your phone Clock / goto Alarm
# 2. add alarm / set time [for example two minutes later]
# 3. click label /input 5000 x “0"
# 4. Save
# 5. Lock Your phone and wait for alarm
# 6. When the alarm clock rings / Watch Crashed ;)

last Exploits
Apple watchOS 2 – Crash (PoC)的更多信息

Google Android – Binder Generic ASLR Leak：
Apple Mac OSX – ‘IOHDIXControllerUserClient::convertClient’ Buffer Integer Overflow：
gnome-terminal (vte) VteTerminal – Escape Sequence Parsing Remote Denial of Service：
Wireshark – dissect_2008_16_security_4 Stack Buffer Overflow：
BitComet 1.19 – Remote Denial of Service：
FaceTime – RTP Video Processing Heap Corruption：
TurboFTP Server 1.00.712 – Remote Denial of Service：
Apple macOS Kernel 10.12.2 (16C67) – ‘AppleIntelCapriController::GetLinkConfig’ Code Execution Due to Lack of Bounds Checking：