ExploitFixes
Microsoft Internet Explorer 11 - Sandbox Escape 2019-05-22 18:05:15

Inject into IE11.

Will work on other sandboxes that allow the opening of windows filepickers through a broker.

You will gain medium IL javascript execution, at which point you simply retrigger your IE RCE bug.

EDB Note ~ Download: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/46919.zip