Lucene search

K
zdiWushi&Z of team509ZDI-10-031
HistoryMar 16, 2010 - 12:00 a.m.

Apple Webkit Blink Event Dangling Pointer Remote Code Execution Vulnerability

2010-03-1600:00:00
wushi&Z of team509
www.zerodayinitiative.com
18

EPSS

0.772

Percentile

98.2%

This vulnerability allows remote attackers to execute arbitrary code on vulnerable software utilizing Apple’s WebKit library. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists due to a failure to unregister a callback pointer during the destruction of a particular type of element when embedded inside a ‘blink’ container. The application dereferences the original resource which can can be leveraged by an attacker to execute arbitrary code under the context of the current user.