Apple Webkit handleMenuItemSelected Use After Free

Strike ID:
D19-0mbc1
CVSS:
8.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
False Positive:
f
Variants:
1
Year:
2018

Description

This strike exploits a vulnerability in Apple Safari Webkit. It is possible to craft javascript and html in such a way that when calling the handleMenuItemSelected method a use after free vulnerability will occur. This can lead to a denial of service condition in the browser, or potentially allow for remote code execution.

CVE

Google