Intrusion PreventionApple.Safari.Webkit.JIT.Optimization.Memory.Corruption
Description
This indicates an attempt to exploit a Memory Corruption vulnerability in Apple Safari Webkit.
The vulnerability is due to an error when running a crafted JavaScript. A remote attacker could exploit this vulnerability by creating and invoking a specially crafted Web Page. Successful exploitation results in the execution of arbitrary code in the context of service account.
Affected Products
Apple Safari version 11.0 and prior
Apple iPhone OS version 11.2 and prior
Apple TV OS version 11.2 and prior
Apple Watch OS version 4.2 and prior
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://support.apple.com/HT208693
https://support.apple.com/HT208694
https://support.apple.com/HT208695
https://support.apple.com/HT208696
https://support.apple.com/HT208697
https://support.apple.com/HT208698
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2020-10-15 | 16.944 | Name:Apple. iOS. Safari. Webkit. JIT. Optimization. Memory. Corruption:Apple. Safari. Webkit. JIT. Optimization. Memory. Corruption |
| 2020-10-05 | 16.937 | Default_action:pass:drop |
| 2020-09-23 | 16.931 |
| ID | 49437 |
| Created | Aug 31, 2020 |
| Updated | Oct 14, 2020 |
| Risk |
|
| CVE ID | CVE-2018-4162 CVE-2016-4669 |
| Exploit Prediction Score | 0.51% |
| Default Action | drop |
| Active | |
| Affected OS | MacOS |
| Affected App | Apple |