Denial of Service Vulnerability in UNIX IPC Layer of WebKitGTK+

Denial of Service Vulnerability in UNIX IPC Layer of WebKitGTK+

CVE-2017-1000122 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, does not properly validate certain message metadata, allowing a compromised secondary process to cause a denial of service (release assertion) of the UI process. This vulnerability does not affect Apple products.

Learn more about our Web App Pen Testing.