2013
09.04

A heap memory buffer overflow vulnerability exists within the WebKit’s JavaScriptCore JSArray::sort(…) method. The exploit for this vulnerability is javascript code which shows how to use it for memory corruption of internal JS objects (Unit32Array and etc.) and subsequent arbitrary code execution (custom ARM/x64 payloads can be pasted into the JS code). This exploit affects Apple Safari version 6.0.1 for iOS 6.0 and OS X 10.7/8.

See the original post here:
Packet Storm Exploit 2013-0903-1 – Apple Safari Heap Buffer Overflow

No Comment.

Add Your Comment

You must be logged in to post a comment.