Lucene search
K

6 matches found

myhack58
myhack58
added 2017/06/07 12:0 a.m.103 views

How to use JavaScript array extensions integer overflow vulnerabilities in WebKit-a vulnerability warning-the black bar safety net

I will be in this article to tell you about the vulnerability, CVE-2017-2536/ZDI-17-358, which is a typical plastic overflow vulnerability, when the system is in the calculation of the allocated space size, the vulnerability will likely lead to a heap buffer overflow. We not only give you...

6.8CVSS7.4AI score0.10478EPSS
Exploits2
seebug.org
seebug.org
added 2017/06/05 12:0 a.m.48 views

Exploiting an integer overflow with array spreading (WebKit)

This article is about CVE-2017-2536 / ZDI-17-358, a classic integer overflow while computing an allocation size, leading to a heap-based buffer overflow. It was introduced in 99ed479, which improved the way JavaScriptCore handled ECMAScript 6 spreading operations, and discovered by saelo in...

6.8CVSS8.6AI score0.10478EPSS
Exploits2
OSV
OSV
added 2017/05/22 5:29 a.m.8 views

CVE-2017-2536

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. tvOS before 10.2.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and...

8.8CVSS8.9AI score
Exploits0References7
UbuntuCve
UbuntuCve
added 2017/05/22 5:29 a.m.23 views

CVE-2017-2536

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. tvOS before 10.2.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and...

8.8CVSS7.4AI score0.10478EPSS
Exploits2References5
CVE
CVE
added 2017/05/22 4:54 a.m.87 views

CVE-2017-2536

CVE-2017-2536 is a WebKit memory-corruption vulnerability affecting Apple devices: iOS < 10.3.2, Safari < 10.1.1, and tvOS

8.8CVSS8AI score0.10478EPSS
Exploits2References7Affected Software3
Debian CVE
Debian CVE
added 2017/05/22 4:54 a.m.26 views

CVE-2017-2536

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. tvOS before 10.2.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and...

8.8CVSS9.2AI score0.10478EPSS
Exploits2
Rows per page
Query Builder