5 matches found
Apple WebKit JSCallbackData UXSS
Apple Webkit: UXSS with JSCallbackData CVE-2017-2442 Here is the definition of |JSCallbackData| class. This class is used to call a javascript function from a DOM object. class JSCallbackDataStrong : public JSCallbackData public: JSCallbackDataStrongJSC::JSObject callback, void :...
CVE-2017-2442
creationtimestamp| type| source ---|---|--- 2017-04-04 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41800...
Apple Webkit: UXSS with JSCallbackData(CVE-2017-2442)
Here is the definition of |JSCallbackData| class. This class is used to call a javascript function from a DOM object. class JSCallbackDataStrong : public JSCallbackData public: JSCallbackDataStrongJSC::JSObject callback, void : mcallbackcallback-globalObject-vm, callback JSC::JSObject callback...
CVE-2017-2442
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. The issue involves the "WebKit JavaScript Bindings" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site...
CVE-2017-2442
CVE-2017-2442 affects WebKit components (WebKit JavaScript Bindings) in Apple Safari/iOS and WebKitGTK+ ecosystems. Root cause: bypass of Same Origin Policy via crafted web content, enabling potential disclosure of sensitive data. Affected products include iOS <10.3 and Safari