CVE-2017-7117

HIGH

Safari < 10.1.2 - Remote Code Execution via WebKit Memory Corruption

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2017-7117. PoCs published by Google Security Research, rebelle3.

AI-analyzed exploit summary This PoC exploits a bypass for a previously fixed issue in JavaScript engines, specifically targeting a vulnerability in the handling of iterator protocols. It demonstrates a type confusion or similar bug by manipulating loop iterators and object properties.

Description

An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Google Security Research · htmldosmultiple
https://www.exploit-db.com/exploits/42955

This PoC exploits a bypass for a previously fixed issue in JavaScript engines, specifically targeting a vulnerability in the handling of iterator protocols. It demonstrates a type confusion or similar bug by manipulating loop iterators and object properties.

Classification
Working Poc 90%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target: JavaScript engines (e.g., V8, SpiderMonkey)
No auth needed
Prerequisites: A vulnerable JavaScript engine
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 1 stars
by rebelle3 · poc
https://github.com/rebelle3/cve-2017-7117

This repository contains a working proof-of-concept exploit for CVE-2017-7117, a type-confusion and use-after-free (UAF) vulnerability in JavaScriptCore (JSC) affecting iOS 10.3.4 and earlier, as well as Safari before 11.0. The exploit demonstrates memory corruption via type confusion, leading to arbitrary memory read capabilities.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Complex
Reliability
Racy
Target: JavaScriptCore (JSC) in WebKit (e.g., libwebkitgtk 2.16.0)
No auth needed
Prerequisites: Vulnerable version of JavaScriptCore (JSC) · Ability to execute JavaScript in the target environment
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (9)

Core 9
Core References
Vendor Advisory x_refsource_confirm
https://support.apple.com/HT208141
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1039384
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/42955/
Vendor Advisory x_refsource_confirm
https://support.apple.com/HT208142
Vendor Advisory x_refsource_confirm
https://support.apple.com/HT208113
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/101006
Vendor Advisory x_refsource_confirm
https://support.apple.com/HT208112
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1039428
Vendor Advisory x_refsource_confirm
https://support.apple.com/HT208116

Scores

CVSS v3 8.8
EPSS 0.0914
EPSS Percentile 92.9%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (5)
apple/icloud < 6.9.1
apple/iphone_os < 10.3.3
apple/itunes < 12.6.2
apple/safari < 10.1.2
apple/tvos < 10.2.2
Published Oct 23, 2017
Tracked Since Feb 18, 2026