Lucene search
K

9 matches found

0day.today
0day.today
added 2019/06/03 12:0 a.m.1398 views

Safari Webkit Proxy Object Type Confusion Exploit

This Metasploit module exploits a type confusion bug in the Javascript Proxy object in WebKit. The DFG JIT does not take into account that, through the use of a Proxy, it is possible to run arbitrary JS code during the execution of a CreateThis operation. This makes it possible to change the...

9.3CVSS0.5AI score0.53772EPSS
Exploits16
Metasploit
Metasploit
added 2019/06/02 2:19 a.m.110 views

Safari Webkit Proxy Object Type Confusion

This module exploits a type confusion bug in the Javascript Proxy object in WebKit. The DFG JIT does not take into account that, through the use of a Proxy, it is possible to run arbitrary JS code during the execution of a CreateThis operation. This makes it possible to change the structure of e....

8.8CVSS8.4AI score0.53772EPSS
Exploits16
Packet Storm
Packet Storm
added 2019/06/02 12:0 a.m.551 views

Safari Webkit Proxy Object Type Confusion

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Safari Webkit Proxy Object Type Confusion', 'Description' = %q This module exploits a type confusion bug in the Javascript Proxy object in WebKit...

9.3CVSS0.2AI score0.53772EPSS
Exploits16
Exploit DB
Exploit DB
added 2019/01/25 12:0 a.m.282 views

iOS/macOS - 'task_swap_mach_voucher()' Use-After-Free

/ voucherswap-poc.c Brandon Azad / if 0 iOS/macOS: taskswapmachvoucher does not respect MIG semantics leading to use-after-free The dangers of not obeying MIG semantics have been well documented: see issues 926 CVE-2016-7612, 954 CVE-2016-7633, 1417 CVE-2017-13861, asyncwake, 1520 CVE-2018-4139,...

6.8AI score
Exploits0
NVD
NVD
added 2017/12/25 9:29 p.m.21 views

CVE-2017-13861

An issue was discovered in certain Apple products. iOS before 11.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "IOSurface" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory...

9.3CVSS7.6AI score0.14888EPSS
Exploits7References8
Cvelist
Cvelist
added 2017/12/25 9:0 p.m.26 views

CVE-2017-13861

An issue was discovered in certain Apple products. iOS before 11.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "IOSurface" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory...

7.6AI score0.14888EPSS
Exploits7References8
CVE
CVE
added 2017/12/25 9:0 p.m.188 views

CVE-2017-13861

CVE-2017-13861 is an IOSurface/IOKit related bug affecting iOS <11.2, tvOS <11.2, watchOS

9.3CVSS7.5AI score0.14888EPSS
Exploits7References8Affected Software3
seebug.org
seebug.org
added 2017/12/15 12:0 a.m.117 views

iOS/MacOS kernel double free due to IOSurfaceRootUserClient not respecting MIG ownership rules(CVE-2017-13861)

I have previously detailed the lifetime management paradigms in MIG in the writeups for: CVE-2016-7612 https://bugs.chromium.org/p/project-zero/issues/detail?id=926 and CVE-2016-7633 https://bugs.chromium.org/p/project-zero/issues/detail?id=954 If a MIG method returns KERNSUCCESS it means that th...

9.3CVSS1.4AI score0.14888EPSS
Exploits11
Circl
Circl
added 2017/12/11 12:0 a.m.17 views

CVE-2017-13861

creationtimestamp| type| source ---|---|--- 2017-12-11 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/43320 2019-06-02 02:46:11+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/appleios/browser/webkitcreatethis.rb 2020-10-09 14:05:40+00:00|...

9.3CVSS8AI score0.14888EPSS
Exploits7References2
Rows per page
Query Builder