CVEs-PoC/2010/CVE-2010-1939.md

CVE-2010-1939

Description

Use-after-free vulnerability in Apple Safari 4.0.5 on Windows allows remote attackers to execute arbitrary code by using window.open to create a popup window for a crafted HTML document, and then calling the parent window's close method, which triggers improper handling of a deleted window object.

POC

Reference

• http://h07.w.interia.pl/Safari.rar

Github

No PoCs found on GitHub currently.