Lucene search
K

4 matches found

0day.today
0day.today
added 2017/06/17 12:0 a.m.90 views

WebKit JSC - Heap Buffer Overflow in Intl.getCanonicalLocales Exploit

Exploit for multiple platform in category dos / poc arrayStorage; storage-msparseMap.clear; storage-mindexBias = 0; storage-mnumValuesInVector = 0; return butterfly; It allocates a fixed sizeBASEARRAYSTORAGEVECTORLEN of memory without caring about |initialLength|. So a BOF occurs in the following...

6.8CVSS8.3AI score0.07655EPSS
Exploits2
exploitpack
exploitpack
added 2017/06/16 12:0 a.m.35 views

WebKit JSC - Intl.getCanonicalLocales Heap Buffer Overflow

WebKit JSC - Intl.getCanonicalLocales Heap Buffer Overflow arrayStorage; storage-msparseMap.clear; storage-mindexBias = 0; storage-mnumValuesInVector = 0; return butterfly; It allocates a fixed sizeBASEARRAYSTORAGEVECTORLEN of memory without caring about |initialLength|. So a BOF occurs in the...

0.9AI score
Exploits0
Exploit DB
Exploit DB
added 2017/06/16 12:0 a.m.59 views

WebKit JSC - 'Intl.getCanonicalLocales' Heap Buffer Overflow

arrayStorage; storage-msparseMap.clear; storage-mindexBias = 0; storage-mnumValuesInVector = 0; return butterfly; It allocates a fixed sizeBASEARRAYSTORAGEVECTORLEN of memory without caring about |initialLength|. So a BOF occurs in the following iteration. EncodedJSValue JSCHOSTCALL...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2017/06/15 12:0 a.m.77 views

WebKit JSC Intl.getCanonicalLocales Heap Buffer Overflow

WebKit: JSC: heap buffer overflow in Intl.getCanonicalLocales CVE-2017-6984 Here's tryCreateArrayButterfly which is invoked from intlObjectFuncGetCanonicalLocales to create a JSArray object. inline Butterfly tryCreateArrayButterflyVM& vm, JSCell intendedOwner, unsigned initialLength Butterfly...

6.8CVSS0.8AI score0.07655EPSS
Exploits2
Rows per page
Query Builder