virus logo Intrusion Prevention

Apple.Safari.WebKit.detachWrapper.Use.After.Free

description-logoDescription

This indicates an attempt to exploit a Use After Free vulnerability in Apple WebKit.
The vulnerability is due to an error when the vulnerable software attempts to handles maliciously crafted web page. An attacker can exploit this to execute arbitrary code via a crafted web page.

affected-products-logoAffected Products

Apple TV version before 11.2.5
Apple Safari version before 11.0.3
Apple iPhone OS version before 11.2.5
Apple Mac OS X version before 10.13.3

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply patches or fixes from the vendor, available from the website:
https://support.apple.com/en-ca/HT208462
https://support.apple.com/en-ca/HT208463
https://support.apple.com/en-ca/HT208465
https://support.apple.com/en-ca/HT208475

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-01-24 15.765 Default_action:pass:drop
2020-01-15 15.758

References

HT208475 HT208465 HT208462 HT208463 43937
ID 48648
Created Jan 15, 2020
Updated May 02, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2018-4089
Exploit Prediction Score 15.45%
Default Action drop
Active
Affected OS MacOS
Affected App Apple