CVE-2016-2808

The watch implementation in the JavaScript engine in Mozilla Firefox before 46.0, Firefox ESR 38.x before 38.8, and Firefox ESR 45.x before 45.1 allows remote attackers to execute arbitrary code or cause a denial of service generation-count overflow, out-of-bounds HashMap write access, and...

UBUNTU-CVE-2016-1665

The JSGenericLowering class in compiler/js-generic-lowering.cc in Google V8, as used in Google Chrome before 50.0.2661.94, mishandles comparison operators, which allows remote attackers to obtain sensitive information via crafted JavaScript code...

UBUNTU-CVE-2016-2808

The watch implementation in the JavaScript engine in Mozilla Firefox before 46.0, Firefox ESR 38.x before 38.8, and Firefox ESR 45.x before 45.1 allows remote attackers to execute arbitrary code or cause a denial of service generation-count overflow, out-of-bounds HashMap write access, and...

CVE-2016-1646

The Array.prototype.concat implementation in builtins.cc in Google V8, as used in Google Chrome before 49.0.2623.108, does not properly consider element data types, which allows remote attackers to cause a denial of service out-of-bounds read or possibly have unspecified other impact via crafted...

Google Fixes Four Critical Vulnerabilities in Latest Chrome Build

Google pushed out the latest version of Chrome Thursday afternoon, fixing five issues, four of them critical. The update remedies an out-of-bounds read in Chrome’s open source JavaScript engine V8, two use-after-free vulnerabilities – one in Navigation and one in Extensions – and a buffer overflo...

UBUNTU-CVE-2016-1953

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 45.0 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to js/src/jit/arm/Assembler-arm.cpp, and unknown other vecto...

chromium-browser: Multiple unspecified vulnerabilities in V8 before 4.9.385.26

Multiple unspecified vulnerabilities in Google V8 before 4.9.385.26, as used in Google Chrome before 49.0.2623.75, allow attackers to cause a denial of service or possibly have other impact via unknown vectors...

UBUNTU-CVE-2016-2843

Multiple unspecified vulnerabilities in Google V8 before 4.9.385.26, as used in Google Chrome before 49.0.2623.75, allow attackers to cause a denial of service or possibly have other impact via unknown vectors...

Vulnerabilities in the Google Chrome browser that allow a perpetrator to exert other effects or cause service failures

The multiple vulnerabilities of the Google V8 browser component in Google Chrome are related to code errors. Exploiting these vulnerabilities could allow a malicious actor to cause service failures or potentially have other adverse effects...

Google Chrome Denial of Service Vulnerability (CNVD-2016-00722)

Google Chrome is a web browser. Google V8 is one of the open source JavaScript engines. A security vulnerability exists in Google Chrome that allows remote attackers to build malicious web pages that can be exploited to trick users into parsing, which can crash applications...

Google Chrome V8 Denial of Service Vulnerability (CNVD-2016-00780)

Google Chrome is the United States Google Google company developed a Web browser. Google V8 is one of the open source JavaScript engine. A security vulnerability exists in Google Chrome prior to version 48.0.2564.82 and in Google V8 prior to version 4.8.271.17, which it uses. An attacker can...

The vulnerability in the Internet Explorer browser allows a perpetrator to bypass the ASLR protection mechanism.

The vulnerability in the JavaScript engines of Internet Explorer lies in the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass the ASLR protection mechanism by using a specially crafted web page...

Google Chrome V8 Denial of Service Vulnerability (CNVD-2016-00713)

Google Chrome is a web browser. Google V8 is one of the open source JavaScript engines. The 'LoadIC::UpdateCaches' function in the ic/ic.cc file of Google V8 used by Google Chrome fails to check for receiver compatibility before executing the variable, allowing remote attackers to exploit the...

CVE-2016-2051

Multiple unspecified vulnerabilities in Google V8 before 4.8.271.17, as used in Google Chrome before 48.0.2564.82, allow attackers to cause a denial of service or possibly have other impact via unknown vectors...

Microsoft Edge Arbitrary Code Execution Vulnerability

Microsoft Edge is a web browser developed by Microsoft USA and is the default browser that comes with the Windows 10 operating system. A security vulnerability in Microsoft Edge's Chakra JavaScript engine allows a remote attacker to build special WEB pages that can be tricked into parsing by user...

CVE-2016-0002

The Microsoft 1 VBScript 5.7 and 5.8 and 2 JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to execute arbitrary code via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability."...

CVE-2016-0024

CVE-2016-0024 concerns the Chakra JavaScript engine in Microsoft Edge. The connected advisories consistently describe a remote code execution vulnerability in Chakra/Edge via unspecified vectors (memory corruption). Public sources reference MS16-002 and a cumulative security update (MS16-002/3124...

Microsoft Edge Multiple Vulnerabilities (3124904)

This host is missing a critical security update according to Microsoft Bulletin MS16-002. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Google Chrome Denial of Service Vulnerability (CNVD-2015-08299)

Google Chrome is a web browser developed by Google Inc. A security vulnerability exists in Google Chrome versions prior to 47.0.2526.73 and Google V8 versions prior to 4.7.80.23, which can be exploited by attackers to cause a denial of service...

KLA10723 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, bypass security restrictions, gain privileges, execute arbitrary code or obtain sensitive information. Below is a complete list ...