7.5
CVSSv3

CVE-2018-11646

Published: 01/06/2018 Updated: 03/10/2019
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 550
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabase.cpp in WebKit, as used in WebKitGTK+ up to and including 2.21.3, mishandle an unset pageURL, leading to an application crash.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

webkitgtk webkitgtk\\+

Vendor Advisories

Oracle Solaris Third Party Bulletin - October 2018 Description The Oracle Solaris Third Party Bulletin announces patches for one or more security vulnerabilities fixed in third party software that is included in Oracle Solaris distributions Starting January 20, 2015, Third Party Bulletins are released on the same day when Oracle Critic ...

Exploits

# Title: WebKitGTK+ < 2213 - Crash (PoC) # Author: Dhiraj Mishra # Date: 2018-06-05 # Software: webkitgtkorg/ # CVE: CVE-2018-11646 # Summary: # webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in # UIProcess/API/glib/WebKitFaviconDatabasecpp in WebKit, as used in WebKitGTK+ through 2213, # mi ...
## # Title: WebKitGTK+ < 2213 - 'WebKitFaviconDatabase' DoS # Author: Dhiraj Mishra # Date: 2018-06-11 # CVE: 2018-11646 # # This module requires Metasploit: metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## class MetasploitModule < Msf::Auxiliary include Msf::Exploit::Remote::HttpServer ...

Mailing Lists

This Metasploit module exploits a vulnerability in WebKitFaviconDatabase when pageURL is unset If successful, it could lead to application crash, resulting in denial of service ...
webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabasecpp in WebKit, as used in WebKitGTK+ through 2213, mishandle an unset pageURL, leading to an application crash ...
------------------------------------------------------------------------ WebKitGTK+ and WPE WebKit Security Advisory WSA-2018-0005 ------------------------------------------------------------------------ Date reported : June 13, 2018 Advisory ID : WSA-2018-0005 CVE identifiers : CVE-2018-4190, CVE-2018 ...

Metasploit Modules

WebKitGTK+ WebKitFaviconDatabase DoS

This module exploits a vulnerability in WebKitFaviconDatabase when pageURL is unset. If successful, it could lead to application crash, resulting in denial of service.

msf > use auxiliary/dos/http/webkitplus
      msf auxiliary(webkitplus) > show actions
            ...actions...
      msf auxiliary(webkitplus) > set ACTION <action-name>
      msf auxiliary(webkitplus) > show options
            ...show and set options...
      msf auxiliary(webkitplus) > run