6 matches found
CVE-2017-2491
CVE-2017-2491 is a Use-After-Free in JavaScriptCore (WebKit) used by Apple Safari on iOS/macOS. The flaw affects the String.replace path in JavaScriptCore, enabling remote code execution via a crafted web page or file. Apple’s advisories for Safari/WebKit updates around Safari 10.1 and iOS 10.3 (...
Apple Safari WebKit JSString Use After Free Code Execution (CVE-2017-2491)
Safari is a web browsing application developed by Apple. Safari browsing functionality is built around the set of components called WebKit. WebKit is a development toolkit which allows third party developers to build applications that use Internet technologies such as HTML, HTTP, and others. A...
Apple Safari 10.0.3 - JSC::CachedCall Use-After-Free Exploit
Exploit for macOS platform in category remote exploits function makecompiledfunction function targetx return x5 + x - xx; // Call only once so that function gets compiled with low level interpreter // but none of the optimizing JITs target0; return target; function pwn var haxs = new Array0x100;...
Pwn2Own 2017: UAF in JSC::CachedCall (WebKit)
Pwn2Own 2017: UAF in JSC::CachedCall WebKit As a quick introduction, we are Samuel Groß, AKA saelo, and Niklas Baumstark, both students at Karlsruhe Institute of Technology, and have been playing CTF together for quite some time before we decided to team up for this year’s Pwn2Own. Today we are...
CVE-2017-2491
creationtimestamp| type| source ---|---|--- 2017-05-04 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41964...
Apple Safari 10.0.3 - JSC::CachedCall Use-After-Free
Apple Safari 10.0.3 - JSC::CachedCall Use-After-Free function makecompiledfunction function targetx return x5 + x - xx; // Call only once so that function gets compiled with low level interpreter // but none of the optimizing JITs target0; return target; function pwn var haxs = new Array0x100; fo...