CVE-2014-1297
CVE-2014-1297
WebKit, as used in Apple Safari before 6.1.3 and 7.x before 7.0.3, does not properly validate WebProcess IPC messages, which allows remote attackers to bypass a sandbox protection mechanism and read arbitrary files by leveraging WebProcess access.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →