5 matches found
Remote Code Execution (RCE)
Microsoft ChakraCore is vulnerable to remote code execution. This is due a lack of validation for return objects without any properties in AsmJs.cpp, which would allow a remote attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2017-0015...
Important Photon OS Security Update - PHSA-2017-0070
Updates of 'tcpdump', 'ruby' packages of Photon OS have been released...
Microsoft Edge 38.14393.0.0 - JavaScript Engine Use-After-Free (CVE-2017-0070)
Content source:https://bugs. chromium. org/p/project-zero/issues/detail? id=1043 I noticed that some javascript getters behave what. My test code: var whitelist = "closed", "document", "frames", "length", "location", "opener", "parent", "self", "top", "window"; var f = document...
CVE-2017-0070
CVE-2017-0134 (Microsoft Edge Scripting Engine) is a remote code execution vulnerability caused by memory corruption when handling objects in memory in the scripting engine. The issue allows a remote attacker to entice a user to open a crafted page, potentially gaining the same user rights as the...
Virtuozzo Linux Errata and Bugfix Advisory 2017:0070
Upstream security update. Follow RHBA-2017-0070 for details...