CVE-2017-2361

MEDIUM

macOS < 10.12.3 - Cross-Site Scripting in Help Viewer

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-2361. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit leverages a path traversal vulnerability in macOS HelpViewer to bypass file path validation and execute arbitrary JavaScript, leading to arbitrary file execution and read access. The PoC demonstrates opening Calculator.app via the 'x-help-script' protocol handler.

Description

An issue was discovered in certain Apple products. macOS before 10.12.3 is affected. The issue involves the "Help Viewer" component, which allows XSS attacks via a crafted web site.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · htmlremotemacos

https://www.exploit-db.com/exploits/41443

View Code ZIP pw:eip

This exploit leverages a path traversal vulnerability in macOS HelpViewer to bypass file path validation and execute arbitrary JavaScript, leading to arbitrary file execution and read access. The PoC demonstrates opening Calculator.app via the 'x-help-script' protocol handler.

Classification

Working Poc 100%

Attack Type

Xss

Complexity

Moderate

Reliability

Reliable

Target: macOS HelpViewer (macOS Sierra 10.12.1)

No auth needed

Prerequisites: Victim must open a malicious link or file · macOS Sierra 10.12.1 or vulnerable version

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Vendor Advisory x_refsource_confirm

https://support.apple.com/HT207483

Issue Tracking x_refsource_misc

https://bugs.chromium.org/p/project-zero/issues/detail?id=1040

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/41443/

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1037671

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/95723

Scores

CVSS v3 6.1

EPSS 0.1713

EPSS Percentile 96.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (1)

apple/mac_os_x < 10.12.2

Published Feb 20, 2017

Tracked Since Feb 18, 2026