CVE-2017-2364

MEDIUM

iPhone OS < 10.2.1 and Safari < 10.0.3 - Same Origin Policy Bypass in WebKit

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-2364. PoCs published by Google Security Research.

AI-analyzed exploit summary This PoC exploits a use-after-free vulnerability in Safari by manipulating the document cache state to retain a reference to a freed document, allowing arbitrary JavaScript execution in the context of the about:blank page.

Description

An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · htmlwebappsmultiple

https://www.exploit-db.com/exploits/41799

View Code ZIP pw:eip

This PoC exploits a use-after-free vulnerability in Safari by manipulating the document cache state to retain a reference to a freed document, allowing arbitrary JavaScript execution in the context of the about:blank page.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Safari 10.0.2 (12602.3.12.0.1)

No auth needed

Prerequisites: User interaction (click)

MITRE ATT&CK