CVE-2017-2367

MEDIUM

Safari < 10.1 - Same Origin Policy Bypass via WebKit

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-2367. PoCs published by Google Security Research.

AI-analyzed exploit summary This PoC exploits a vulnerability in Safari where a frame is not properly detached from an unloaded window, allowing access to the new document's named properties. It demonstrates a cross-origin access issue by injecting a script into a node retrieved from a different domain.

Description

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · htmlwebappsmultiple

https://www.exploit-db.com/exploits/41801

View Code ZIP pw:eip

This PoC exploits a vulnerability in Safari where a frame is not properly detached from an unloaded window, allowing access to the new document's named properties. It demonstrates a cross-origin access issue by injecting a script into a node retrieved from a different domain.

Classification

Working Poc 90%

Attack Type

Xss

Complexity

Moderate

Reliability

Reliable

Target: Safari 10.0.2(12602.3.12.0.1)

No auth needed

Prerequisites: Victim must visit a malicious webpage · Target must be using vulnerable Safari version

MITRE ATT&CK