Vulnerability of JavaScript handlers in Microsoft Edge and Internet Explorer browsers of the Windows operating system, allowing a perpetrator to execute arbitrary code

🗓️ 03 Aug 2017 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Vulnerability in Microsoft Edge and Internet Explorer JavaScript handlers on Windows allows remote code execution via memory object processing beyond bounds.

Reporter	Title	Published	Views	Family All 47
CNVD	Microsoft EDGE Remote Memory Corrupted Code Execution Vulnerability (CNVD-2017-22681)	12 Jul 201700:00	–	cnvd
CVE	CVE-2017-8607	11 Jul 201721:00	–	cve
Cvelist	CVE-2017-8607	11 Jul 201721:00	–	cvelist
Microsoft KB	Internet Explorer help	11 Jul 201707:00	–	mskb
Microsoft KB	July 11, 2017—KB4025331 (Monthly Rollup)	11 Jul 201707:00	–	mskb
Microsoft KB	July 11, 2017—KB4025336 (Monthly Rollup)	11 Jul 201707:00	–	mskb
Microsoft KB	July 11, 2017—KB4025338 (OS Build 10240.17488)	11 Jul 201707:00	–	mskb
Microsoft KB	July 11, 2017—KB4025339 (OS Build 14393.1480)	11 Jul 201707:00	–	mskb
Microsoft KB	July 11, 2017—KB4025341 (Monthly Rollup)	11 Jul 201707:00	–	mskb
Microsoft KB	July 11, 2017—KB4025342 (OS Build 15063.483)	11 Jul 201707:00	–	mskb

Vulners

Node

microsoft internet_explorerMatch10

OR

microsoft internet_explorerMatch11

OR

microsoft internet_explorerMatch9

Source	Link
securityfocus	www.securityfocus.com/bid/99410
securitytracker	www.securitytracker.com/id/1038848
securitytracker	www.securitytracker.com/id/1038849
portal	www.portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8607
web	www.web.nvd.nist.gov/view/vuln/detail

23 Mar 2021 00:00Current

7.9High risk

Vulners AI Score7.9

CVSS 27.6

EPSS0.21953

vulnerability windows memory object processing remote code execution javascript handlers microsoft edge internet explorer