CVE-2017-2504

MEDIUM

Safari < 10.1.1 - Universal Cross-Site Scripting via WebKit Editor Commands

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-2504. PoCs published by Google Security Research.

AI-analyzed exploit summary This PoC exploits a use-after-free (UAF) vulnerability in WebKit's handling of `document.execCommand` by manipulating event queues and document replacement, leading to arbitrary code execution. The exploit triggers a race condition via media query listeners and document focus manipulation.

Description

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. tvOS before 10.2.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to conduct Universal XSS (UXSS) attacks via a crafted web site that improperly interacts with WebKit Editor commands.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · htmlwebappsmultiple

https://www.exploit-db.com/exploits/42064

View Code ZIP pw:eip

This PoC exploits a use-after-free (UAF) vulnerability in WebKit's handling of `document.execCommand` by manipulating event queues and document replacement, leading to arbitrary code execution. The exploit triggers a race condition via media query listeners and document focus manipulation.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Complex

Reliability

Racy

Target: WebKit (Safari 10.0.3)

No auth needed

Prerequisites: User interaction (click) · WebKit-based browser (e.g., Safari)

MITRE ATT&CK