vendor:
WebKit
by:
Project Zero
7,5
CVSS
HIGH
Use-after-free
416
CWE
Product Name: WebKit
Affected Version From: WebKit nightly
Affected Version To: WebKit nightly
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: All
2018
Use-after-free in WebKit
There is a use-after-free security vulnerability in WebKit. The vulnerability was confirmed on ASan build of WebKit nightly. The PoC code creates a Uint8Array object and then appends a HTMLScriptElement object to a ContainerNode object. The HTMLScriptElement object is then removed from the ContainerNode object, which causes a use-after-free vulnerability.
Mitigation:
Upgrade to the latest version of WebKit to fix the vulnerability.
