Think you have a false positive on this rule?

Sid 1-52342

Message

BROWSER-WEBKIT Apple Safari WebKit out-of-bounds read attempt

Summary

This event is generated when an attacker attempts to exploit CVE-2019-8689.

Impact

Attempted User Privilege Gain

Detailed information

Safari Webkit is vulnerable to an out-of-bounds read in the ArgumentsEliminationPhase::transform function. An attacker who abuses this may be able to access memory they otherwise would not be allowed to access. This exploit may be used in an attempt to compromise a victim machine.

Affected systems

Ease of attack

False positives

False negatives

Corrective action

Contributors

  • Cisco Talos Intelligence Group

Additional References

  • CVE-2019-8689
  • support.apple.com/en-us/HT210353