Lucene search
Team Sniper (Keen Team and PC Manager)ZDI-17-354HistoryMay 18, 2017 - 12:00 a.m.
(Pwn2Own) Apple Safari B3 Optimization Out-Of-Bounds Access Remote Code Execution Vulnerability
2017-05-1800:00:00
Team Sniper (Keen Team and PC Manager)
www.zerodayinitiative.com
26
EPSS
0.042
Percentile
92.3%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of B3 optimizations. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before allocating a buffer. An attacker can leverage this vulnerability to execute code under the context of the current process.
References
Related
packetstorm
packetstorm
WebKit JSC Jit Optimization Check Failure
2017-06-15 00:00:00
nvd
nvd
CVE-2017-2547
2017-05-22 05:29:02
debiancve
debiancve
CVE-2017-2547
2017-05-22 05:29:02
zdt
zdt
cve
cve
CVE-2017-2547
2017-05-22 05:29:02
prion
prion
Memory corruption
2017-05-22 05:29:00
cvelist
cvelist
CVE-2017-2547
2017-05-22 04:54:00
ubuntucve
ubuntucve
CVE-2017-2547
2017-05-22 00:00:00
exploitdb
exploitdb
nessus
nessus
macOS : Apple Safari < 10.1.1 Multiple Vulnerabilities
2017-05-23 00:00:00
Apple iOS < 10.3.2 Multiple Vulnerabilities
2017-05-18 00:00:00
GLSA-201706-15 : WebKitGTK+: Multiple vulnerabilities
2017-06-08 00:00:00
openvas
openvas
Apple Safari Multiple Vulnerabilities (HT207804)
2017-05-16 00:00:00
apple
apple
About the security content of Safari 10.1.1 - Apple Support
2017-06-26 04:38:16
About the security content of Safari 10.1.1
2017-05-15 00:00:00
About the security content of iOS 10.3.2
2017-05-15 00:00:00
gentoo
gentoo
WebKitGTK+: Multiple vulnerabilities
2017-06-07 00:00:00