## https://sploitus.com/exploit?id=0A786718-FAE7-5A66-983B-1D1244656089
Exploit for CVE-2023-3079
=====================
- Shoutout to [@_clem1](https://twitter.com/_clem1) for [finding the ITW exploit][1].
- Shoutout to [@alisaesage](https://twitter.com/alisaesage) for her prior [RCA on the bug][2].
- Shoutout to [@buptsb](https://twitter.com/buptsb) for his [notes on the bug][3].
[1]: https://chromereleases.googleblog.com/2023/06/stable-channel-update-for-desktop.html
[2]: https://twitter.com/alisaesage/status/1666368128207720448
[3]: https://gist.github.com/MaxBWMinRTT/bd47b17cac9eef20efe3040b5a50e043
Resources
====================
Writeups and other resources.
- https://issues.chromium.org/issues/40065138
- https://web.archive.org/web/20240304191209/https://cwresearchlab.co.kr/entry/CVE-2023-3079-Bug-in-the-handling-of-the-arguments-object
- https://web.archive.org/web/20240324055049/https://cwresearchlab.co.kr/entry/Chrome-v8-Hole-Exploit
- https://theori.io/blog/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce
- https://web.archive.org/web/20240725001133/https://h0meb0dy.me/entry/V8-Hole-Exploit-Chromium-1150579090
- https://www.youtube.com/watch?v=cTvbFGhcTgs
- https://www.youtube.com/watch?v=u_2sRheRYkQ&t=267