Exploitation Summary
EIP tracks 3 public exploits for CVE-2018-11646.
PoCs published by Dhiraj Mishra, Dhiraj Mishra, Hardik Mehta, Zubin Devnani, Manuel Caballero, including Metasploit module auxiliary/dos/http/webkitplus.
AI-analyzed exploit summary This exploit targets a denial-of-service vulnerability in WebKitGTK+ by manipulating the WebKitFaviconDatabase when pageURL is unset, causing the application to crash. It uses a JavaScript payload served via an HTTP server to trigger the vulnerability.
Description
webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabase.cpp in WebKit, as used in WebKitGTK+ through 2.21.3, mishandle an unset pageURL, leading to an application crash.
Exploits (3)
This exploit targets a denial-of-service vulnerability in WebKitGTK+ by manipulating the WebKitFaviconDatabase when pageURL is unset, causing the application to crash. It uses a JavaScript payload served via an HTTP server to trigger the vulnerability.
This PoC exploits a crash vulnerability in WebKitGTK+ by manipulating the favicon database functions with an unset pageURL, leading to a denial-of-service condition. The provided JavaScript code demonstrates the issue by opening a window and manipulating its document properties.
This exploit targets a vulnerability in WebKitFaviconDatabase where an unset pageURL leads to a denial of service (DoS) by crashing the application. It serves a malicious JavaScript payload via an HTTP server to trigger the crash.
References (5)
Scores
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H