phoenhex

3 exploits Active since May 2017
CVE-2017-2533 EXPLOITDB HIGH bash WORKING POC
macOS < 10.12.5 - Race Condition in DiskArbitration
An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue involves the "DiskArbitration" component. A race condition allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVSS 7.0
CVE-2017-2491 EXPLOITDB HIGH html WORKING POC
iPhone OS < 10.2.1 - Remote Code Execution via JavaScript String.replace Use-After-Free
Use after free vulnerability in the String.replace method JavaScriptCore in Apple Safari in iOS before 10.3 allows remote attackers to execute arbitrary code via a crafted web page, or a crafted file.
CVSS 8.8
CVE-2017-2536 EXPLOITDB HIGH text WORKING POC
Safari < 10.1.1 - Remote Code Execution via WebKit Memory Corruption
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. tvOS before 10.2.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.
CVSS 8.8