4 matches found
WebKit: UXSS via ContainerNode::parserInsertBefore(CVE-2017-2508)
VULNERABILITY DETAILS From /WebKit/Source/core/dom/ContainerNode.cpp: void ContainerNode::parserInsertBeforePassRefPtrWillBeRawPtr newChild, Node& nextChild ... while RefPtrWillBeRawPtr parent = newChild-parentNode parent-parserRemoveChildnewChild; if document != newChild-document...
CVE-2017-2508
creationtimestamp| type| source ---|---|--- 2017-05-25 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/42066...
CVE-2017-2508
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to conduct Universal XSS UXSS attacks via a crafted web site that improperly interacts with container nodes...
CVE-2017-2508
CVE-2017-2508 relates to WebKit in Apple Safari/WebKit on iOS and macOS before patches: iOS <10.3.2 and Safari