Heap-based Buffer Overflow in Apple Safari 7.0.2: Remote Code Execution and Sandbox Bypass

Heap-based Buffer Overflow in Apple Safari 7.0.2: Remote Code Execution and Sandbox Bypass

CVE-2014-1303 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Heap-based buffer overflow in Apple Safari 7.0.2 allows remote attackers to execute arbitrary code and bypass a sandbox protection mechanism via unspecified vectors, as demonstrated by Liang Chen during a Pwn2Own competition at CanSecWest 2014.

Learn more about our Cis Benchmark Audit For Safari Browser.