Apple.WebKit.WebCore.jsElementScrollHeightGetter.Use.After.Free
Description
This indicates an attempt to exploit a Use After Free vulnerability in Apple WebKit.
The vulnerability is due to an error when the vulnerable software attempts to handles maliciously crafted web page. An attacker can exploit this to execute arbitrary code via a crafted web page.
Affected Products
Apple Safari version before 11.1
Apple iPhone OS version before 11.3.1
Apple TV OS version before 11.4
Apple iCloud version before 7.5, running on Windows
Apple iTunes version before 12.7.5, running on Windows
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply patches or fixes from the vendor, available from the website:
https://support.apple.com/en-ca/HT208741
https://support.apple.com/en-ca/HT208743
https://support.apple.com/en-ca/HT208850
https://support.apple.com/en-ca/HT208852
https://support.apple.com/en-ca/HT208853
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |