46 matches found
Prototype Pollution
Amendment This was deemed not a vulnerability. Overview utils-copy is a package that allows you to copy or deep clone a value to an arbitrary depth. Affected versions of this package are vulnerable to Prototype Pollution via the copying process if an Object with direct access to its constructor i...
Microsoft Edge Charka JIT Incomplete Fix For Issue 1420
Microsoft Edge: Chakra: JIT: The fix for issue 1420 is incomplete. CVE-2018-0933 Here's a snippet of JavascriptArray::BoxStackInstance. To fix issue 1420 , "deepCopy" was introduced. It only deep-copies the array when "instance-head" is on the stack. So simply by adding a single line of code that...
Null pointer dereference
The pushdup function in util/decompile.c in libming through 0.4.8 does not recognize the need for ActionPushDuplicate to perform a deep copy when a String is at the top of the stack, making the library vulnerable to a util/decompile.c getName NULL pointer dereference, which may allow attackers to...
CVE-2018-9165
The pushdup function in util/decompile.c in libming through 0.4.8 does not recognize the need for ActionPushDuplicate to perform a deep copy when a String is at the top of the stack, making the library vulnerable to a util/decompile.c getName NULL pointer dereference, which may allow attackers to...
CVE-2018-9165
The pushdup function in util/decompile.c in libming through 0.4.8 does not recognize the need for ActionPushDuplicate to perform a deep copy when a String is at the top of the stack, making the library vulnerable to a util/decompile.c getName NULL pointer dereference, which may allow attackers to...
CVE-2018-9165
The pushdup function in util/decompile.c in libming through 0.4.8 does not recognize the need for ActionPushDuplicate to perform a deep copy when a String is at the top of the stack, making the library vulnerable to a util/decompile.c getName NULL pointer dereference, which may allow attackers to...