4 matches found
WebKit constructJSReadableStreamDefaultReader Type Confusion
WebKit: Type confusion in constructJSReadableStreamDefaultReader CVE-2017-2457 EncodedJSValue JSCHOSTCALL constructJSReadableStreamDefaultReaderExecState& exec VM& vm = exec.vm; auto scope = DECLARETHROWSCOPEvm; JSReadableStream stream = jsDynamicDowncastexec.argument0; if !stream return...
WebKit: Type confusion in constructJSReadableStreamDefaultReader(CVE-2017-2457)
EncodedJSValue JSCHOSTCALL constructJSReadableStreamDefaultReaderExecState& exec VM& vm = exec.vm; auto scope = DECLARETHROWSCOPEvm; JSReadableStream stream = jsDynamicDowncastexec.argument0; if !stream return throwArgumentTypeErrorexec, scope, 0, "stream", "ReadableStreamReader", nullptr,...
CVE-2017-2457
creationtimestamp| type| source ---|---|--- 2017-04-04 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41803...
CVE-2017-2457
CVE-2017-2457 affects WebKit in Apple products (notably iOS up to 10.3 and Safari up to 10.1). The vulnerability allows remote attackers to execute arbitrary code or cause memory corruption and a denial of service via a crafted web page. Connected documents indicate WebKit/WebKitGTK+ variants and...