Lucene search
K

5 matches found

Packet Storm
Packet Storm
added 2025/01/24 12:0 a.m.442 views

DFG JIT Use-After-Free

DFG's doesGC is incorrect about the HasIndexedProperty operation's behavior on StringObjects. This can lead to a use-after-free condition. See also https://bugs.chromium.org/p/project-zero/issues/detail?id=1699 for a similar issue. The DFG JIT compiler attempts to determine whether a DFG IR...

8.8CVSS9.2AI score0.08317EPSS
Exploits2
0day.today
0day.today
added 2019/05/21 12:0 a.m.114 views

macOS < 10.14.5 / iOS < 12.3 DFG JIT Compiler - HasIndexedProperty Use-After-Free Exploit

macOS 10.14.5 / iOS 12.3 DFG JIT Compiler - HasIndexedProperty Use-After-Free Exploit See also https://bugs.chromium.org/p/project-zero/issues/detail?id=1699 for a similar issue. The DFG JIT compiler attempts to determine whether a DFG IR operation could cause garbage collection GC during its...

8.8CVSS0.3AI score0.08317EPSS
Exploits2
exploitpack
exploitpack
added 2019/05/21 12:0 a.m.29 views

Apple macOS 10.14.5 iOS 12.3 DFG JIT Compiler - HasIndexedProperty Use-After-Free

Apple macOS 10.14.5 iOS 12.3 DFG JIT Compiler - HasIndexedProperty Use-After-Free See also https://bugs.chromium.org/p/project-zero/issues/detail?id=1699 for a similar issue. The DFG JIT compiler attempts to determine whether a DFG IR operation could cause garbage collection GC during its executi...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2019/05/21 12:0 a.m.208 views

Apple macOS &lt; 10.14.5 / iOS &lt; 12.3 DFG JIT Compiler - &#039;HasIndexedProperty&#039; Use-After-Free

See also https://bugs.chromium.org/p/project-zero/issues/detail?id=1699 for a similar issue. The DFG JIT compiler attempts to determine whether a DFG IR operation could cause garbage collection GC during its execution 1. With this, it is then possible for the compiler to determine whether there...

7.4AI score
Exploits0
myhack58
myhack58
added 2018/11/18 12:0 a.m.260 views

Safari+macOS full exploit chain-vulnerability and early warning-the black bar safety net

At this year's Pwn2Own 2018 game, there is more for the Apple Safari browser attack challenge, today we will introduce for Safari remote code executionRCE, sandbox escapes, local privilege escalationLPEand for macOS 10.13.3 kernel exploits. To attack the challenges of the environment settings...

0.1AI score
Exploits0
Rows per page
Query Builder