Source |
CISCO Talos |
Identifiant |
1926098 |
Date de publication |
2020-09-17 07:21:35 (vue: 2020-09-19 03:05:04) |
Titre |
Vulnerability Spotlight: Remote code execution vulnerability Apple Safari |
Texte |
Marcin "Icewall" Noga of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.
The Apple Safari web browser contains a remote code execution vulnerability in its Webkit feature. Specifically, an attacker could trigger a use-after-free condition in WebCore, the DOM-rendering system for Webkit used in Safari. This could give the attacker the ability to execute remote code on the victim machine. A user needs to open a specially crafted, malicious web page in Safari to trigger this...
[[ This is only the beginning! Please visit the blog for the complete entry ]] |
Envoyé |
Oui |
Condensat |
ability after apple attacker beginning blog browser cisco code complete condition contains could crafted discovered dom entry execute execution feature free give icewall its jon machine malicious marcin munshaw needs noga only open page please remote rendering safari specially specifically spotlight: system talos trigger use used user victim visit vulnerability web webcore webkit |
Tags |
Vulnerability
|
Stories |
|
Notes |
|
Move |
|