CVE-2019-8672

HIGH

iCloud < 7.13 - Memory Corruption via Malicious Web Content

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-8672. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit demonstrates a use-after-free vulnerability in JavaScriptCore (JSC) due to improper handling of ValueProfiles during eden garbage collection cycles. The PoC triggers a crash by manipulating GC behavior to leave dangling pointers in ValueProfiles, leading to out-of-bounds access in the StructureIDTable.

Description

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to arbitrary code execution.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · textdosmultiple

https://www.exploit-db.com/exploits/47191

View Code ZIP pw:eip

This exploit demonstrates a use-after-free vulnerability in JavaScriptCore (JSC) due to improper handling of ValueProfiles during eden garbage collection cycles. The PoC triggers a crash by manipulating GC behavior to leave dangling pointers in ValueProfiles, leading to out-of-bounds access in the StructureIDTable.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Complex

Reliability

Reliable

Target: WebKit JavaScriptCore (JSC)

No auth needed

Prerequisites: JavaScriptCore (JSC) with concurrent JIT disabled

MITRE ATT&CK