BROWSER-WEBKIT -- Snort has detected traffic known to exploit vulnerabilities present in the Webkit browser engine (aside from Chrome) this includes Appleâ€™s Safari, RIMâ€™s mobile browser, Nokia, KDE, Webkit itself, and Palm. Attacks often insert code via exploits, cause webkit renderings in the browser to crash, or otherwise create chaos or exploit for entrance.
BROWSER-WEBKIT WebKit JIT compiler common subexpression elimination out of bounds access attempt
This rule detects an attempt to force incorrect subexpression elimination in vulnerable versions of WebKit, possibly leading to remote code execution by detecting the variable conditioning used to set up the vulnerable conditions.
What To Look For
This rule detects an attempt to force incorrect subexpression elimination in vulnerable versions of WebKit, possibly leading to remote code execution.
No public information
No known false positives
Cisco Talos Intelligence Group
MITRE ATT&CK Framework
Technique: Exploitation for Client Execution
For reference, see the MITRE ATT&CK vulnerability types here:
Memory Corruption is any vulnerability that allows the modification of the content of memory locations in a way not intended by the developer. Memory corruption results are inconsistent; they could lead to fatal errors and system crashes or data leakage; some have no effect at all.
CVE Additional Information