Upgrade your account to access Premium section
Access to DarkForums Private Archive Telegram Channel
Old Telegram is Banned Join our new Telegram Channel

CVE-2025-53772 POC
by 4NN4 - 07-09-25, 09:03 PM
DarkForums Members Offline
Members

Posts 25
Threads 7
Joined Jun 2025
Reputation 2
5 Months
#1
07-09-25, 09:03 PM
PoC from hawktrace - https://hawktrace.com/blog/cve-2025-53772


public static object Deserialize(string str, out Exception handledException) {
    handledException = null;
    BinaryFormatter binaryFormatter = new BinaryFormatter(); // [1]
    byte[] array = Convert.FromBase64String(str); // [2]
    object obj;
    try {
        obj = Base64EncodingHelper.DeserializeHelper(binaryFormatter, array);
    } catch (SerializationException ex) {
        handledException = ex;
        binaryFormatter.Binder = new Base64EncodingHelper.HandleMissingExceptionTypesSerializationBinder();
        obj = Base64EncodingHelper.DeserializeHelper(binaryFormatter, array);
    }
    return obj;
}


private static object DeserializeHelper(BinaryFormatter formatter, byte[] buffer) {
    object obj;
    using (MemoryStream memoryStream = new MemoryStream(buffer)) {
        using (GZipStream gzipStream = new GZipStream(memoryStream, CompressionMode.Decompress)) { // [3]
            obj = formatter.Deserialize(gzipStream); // [4]
        }
    }
    return obj;
}
Reply
DarkForums Members Offline
Members

Posts 3
Threads 0
Joined Oct 2025
Reputation 0
1 Months
#2
03-11-25, 10:17 PM
You are posting POC's and repositories of other people without their permission. Why can't you create and discover your own CVE and share it with us? don't you have your own discovery?
Reply
DarkForums Members Offline
Members

Posts 25
Threads 7
Joined Jun 2025
Reputation 2
5 Months
#3
06-11-25, 05:11 AM
Yes I do, kid
Permission? Ahahah, you are funny!:-)))
Reply


Forum Jump:


 Users browsing this thread: 1 Guest(s)