|CERT-In Vulnerability Note
Memory corruption vulnerability in Apple Safari
Original Issue Date:December 18, 2017
Severity Rating: HIGH
- Apple Safari prior to 11.0.2
Multiple vulnerabilities have been reported in Apple Safari which could allow a remote attacker to execute arbitrary code on the target system.
These vulnerabilities exist in WebKit component of Apple Safari due to improper memory handling by the affected software. A remote attacker could exploit these vulnerabilities by convincing a user to visit a specially crafted website through Apple Safari triggering a memory corruption error.
Successful exploitation of these vulnerabilities could allow execution of arbitrary code on the targeted system.
Apply appropriate updates as mentioned in Apple Security Updates
Apple Security Advisory HT208324
The information provided herein is on "as is" basis, without warranty of any kind.
Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
6, CGO Complex, Lodhi Road,
New Delhi - 110 003