Intrusion Prevention

Apple.Safari.WebKit.CSS.Rule.Deletion.Memory.Corruption

Description

This indicates an attack attempt to exploit a Memory Corruption vulnerability in Apple Safari Webkit.
This issue is caused by an error in the vulnerable software when handling the parent stylesheet pointer of a removed css rule. It may allow remote attackers to execute arbitrary code by sending a crafted web page.

Affected Products

Safari Android

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Refer to the vendor's web site for suggested workaround.
http://trac.webkit.org/changeset/75168

CVE References

CVE-2011-3443