4 matches found
CVE-2017-2446
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code via a crafted web site that leverages the mishandling of...
CVE-2017-2446
CVE-2017-2446 affects Apple's WebKit components on iOS <10.3, Safari <10.1 and tvOS
Safari Browser: Builtin JavaScript allows Function.caller to be used in strict mode(CVE-2017-2446)
If a builtin script in webkit is in strict mode, but then calls a function that is not strict, this function is allowed to call the Function. caller and can obtain a reference to the strict function. This is inconsistent with the behavior when executing non-builtin scripts in Safari, and the...
CVE-2017-2446
creationtimestamp| type| source ---|---|--- 2017-03-27 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41741 2017-03-27 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41742...