Heap Buffer Overflow in Safari

vendor:

Safari

by:

Not provided

7.5

CVSS

HIGH

Heap Buffer Overflow

126

CWE

Product Name: Safari

Affected Version From: Safari 10.0.3 (12602.4.8)

Affected Version To: Not provided

Patch Exists: NO

Related CWE: Not provided

CPE: a:apple:safari:10.0.3

Metasploit:

Other Scripts:

Platforms Tested: Not provided

Not provided

Heap Buffer Overflow in Safari

The provided PoC triggers a heap buffer overflow vulnerability in Safari 10.0.3 (12602.4.8). By repeatedly refreshing the page, the exploit crashes the browser.

Mitigation:

Apply the latest security patches and updates for Safari.

Source

Heap Buffer Overflow in Safari

Mitigation:

Exploit-DB raw data: