Exploiting Zenbleed from Chrome

This repository contains a proof-of-concept for exploiting Zenbleed from Chrome using a V8 vulnerability which enbles arbitrary code execution in the renderer process.

The target Chrome version is 114.0.5735.90 on Linux. The vulnerability exploited in CVE-2023-3079.

The proof-of-concept largely builds on the efforts of @mistymntncop and @taviso.

See Tavis Ormandy's Zenbleed blog post for details about Zenbleed. See @mistymntncop's proof-of-concept V8 exploit for the V8 vulnerability details.

Name		Name	Last commit message	Last commit date
Latest commit History 1 Commit
helpers		helpers
zenbleed_shellcode		zenbleed_shellcode
CVE-2023-3079-Zenbleed.html		CVE-2023-3079-Zenbleed.html
CVE-2023-3079-Zenbleed.js		CVE-2023-3079-Zenbleed.js
Easy-Mode-Zenbleed.js		Easy-Mode-Zenbleed.js
README.md		README.md
array_len.diff		array_len.diff
gen_jit_hop.py		gen_jit_hop.py
google-chrome-stable-114.0.5735.90-1_amd64.deb		google-chrome-stable-114.0.5735.90-1_amd64.deb

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Exploiting Zenbleed from Chrome

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

Exploiting Zenbleed from Chrome

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages