Published: 02/04/2017 Updated: 03/10/2019

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 691

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

An issue exists in certain Apple products. iOS prior to 10.3 is affected. Safari prior to 10.1 is affected. tvOS prior to 10.2 is affected. The issue involves the "WebKit" component. It allows remote malicious users to execute arbitrary code via a crafted web site that leverages the mishandling of strict mode functions.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple tvos
apple safari
apple iphone os

Several security issues were fixed in WebKitGTK+ ...

An issue has been found in WebKit, allowing remote attackers to execute arbitrary code via a crafted web site that leverages the mishandling of strict mode functions ...

<!-- Source: bugschromiumorg/p/project-zero/issues/detail?id=1036 There is a type confusion vulnerability when calling DateTimeFormatformat This function is provided as a bound function by a getter in the DateTimeFormat class Binding the function ensures that the this object is of the right type However, when the bound function is ...

<!-- Source: bugschromiumorg/p/project-zero/issues/detail?id=1032 If a builtin script in webkit is in strict mode, but then calls a function that is not strict, this function is allowed to call Functioncaller and can obtain a reference to the strict function This is inconsistent with the behavior when executing non-builtin scripts i ...

Some papers and exploit writeups about WebKit.

WebKitPwn Some papers and exploit writeups about WebKit Reading list for VR Architecture Apple Browser Internals WebKit Architecture Writeups A Guide to Assertion Macros in WebKit A New Bytecode Format for JavaScriptCore Apple Safari JavaScriptCore Inspector Type Confusion CVE-2017-2446 or JSC__JSGlobalObject__isHavingABadTime CVE-2018-4441 OOB R_W via JSArray unshiftCountW

Awesome Web Security 🐶 Curated list of Web Security materials and resources Needless to say, most websites suffer from various types of bugs which may eventually lead to vulnerabilities Why would this happen so often? There can be many factors involved including misconfiguration, shortage of engineers' security skills, etc To combat this, here is a curated list o

Writeup for 35C3's WebKid browser exploitation challenge

35C3CTF - WebKid Writeup Introduction It's been a long time since I've wanted to get into browser exploitation and this 35c3ctf challenge seemed like a perfect opportunity to start This writeup will be written from the perspective of a complete beginner on the subject Hopefully it will help people starting get a better understanding of some nuances The Challenge Th

NVD-CWE-noinfo https://support.apple.com/HT207617 https://support.apple.com/HT207601 https://support.apple.com/HT207600 http://www.securityfocus.com/bid/97130 https://security.gentoo.org/glsa/201706-15 http://www.securitytracker.com/id/1038137 https://www.exploit-db.com/exploits/41742/https://www.exploit-db.com/exploits/41741/https://doar-e.github.io/blog/2018/07/14/cve-2017-2446-or-jscjsglobalobjectishavingabadtime/https://bugs.chromium.org/p/project-zero/issues/detail?id=1032 https://usn.ubuntu.com/3257-1/https://nvd.nist.gov https://www.exploit-db.com/exploits/41741/

CVE-2017-2446

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect