Vulnerability Details:

———————

WebKit in Apple iOS before 9.3 and Safari before 9.1 allows remote attackers to bypass the Same Origin Policy and obtain physical-location data via a crafted geolocation request.

POC:

———————

cve20161779-1 cve20161779-2

Base64 decode:

References:

———————

CONFIRM:https://support.apple.com/HT206166
CONFIRM:https://support.apple.com/HT206171
APPLE:APPLE-SA-2016-03-21-1
http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html
APPLE:APPLE-SA-2016-03-21-6
http://lists.apple.com/archives/security-announce/2016/Mar/msg00005.html
Chromium
https://bugs.chromium.org/p/chromium/issues/detail?id=494987

CREDIT:

———————

This vulnerability was discovered by xisigr of Tencent’s Xuanwu LAB
Chinese Paper:http://xlab.tencent.com/cn/2016/04/19/CVE-2016-1779/