CVE-2017-5121

Inappropriate use of JIT optimisation in V8 in Google Chrome prior to 61.0.3163.100 for Linux, Windows, and Mac allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page, related to the escape analysis phase...

CVE-2017-5116

Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...

CVE-2017-5098

A use after free in V8 in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

UBUNTU-CVE-2017-5071

Insufficient validation of untrusted input in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows and Mac, and 59.0.3071.92 for Android allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

UBUNTU-CVE-2017-5098

A use after free in V8 in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

UBUNTU-CVE-2017-5088

Insufficient validation of untrusted input in V8 in Google Chrome prior to 59.0.3071.104 for Mac, Windows, and Linux, and 59.0.3071.117 for Android, allowed a remote attacker to perform out of bounds memory access via a crafted HTML page...

UBUNTU-CVE-2017-5122

Inappropriate use of table size handling in V8 in Google Chrome prior to 61.0.3163.100 for Windows allowed a remote attacker to trigger out-of-bounds access via a crafted HTML page...

Microsoft Edge Chakra ParseCatch Type Confusion (CVE-2017-11764)

A type confusion vulnerability exists in Microsoft Edge Chakra JavaScript Engine. The vulnerability is due to a lack of validation in the ParseCatch method which results in the generation on a malformed Abstract Syntax Tree AST. A remote attacker could exploit this vulnerability by enticing the...

USN-3460-1: WebKitGTK+ vulnerabilities

A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service...

Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-11809)

A Memory Corruption Vulnerability exists in Microsoft Edge. The vulnerability is due to the way JavaScript engine renders when handling objects in memory. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...

Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-11800)

A Memory Corruption Vulnerability exists in Microsoft Edge. The vulnerability is due to the way JavaScript engine renders when handling objects in memory. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...

Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2017-0201)

A remote code execution vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to the way JavaScript engine renders when handling objects in memory. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a specially crafted we...

chromium-browser: out-of-bounds access in v8

Inappropriate use of JIT optimisation in V8 in Google Chrome prior to 61.0.3163.100 for Linux, Windows, and Mac allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page, related to the escape analysis phase...

Google Chrome V8 Crankshaft Type Confusion (CVE-2017-5070)

A type confusion vulnerability exists in Google Chrome. The vulnerability is due to improper handling of objects in memory by the V8 JavaScript engine while compiling code. A remote attacker could exploit this vulnerability by enticing a user to open a malicious web page...

Google Chrome < 61.0.3163.100 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 61.0.3163.100. It is, therefore, affected by multiple vulnerabilities as referenced in the 201709stable-channel-update-for-desktop21 advisory. - Inappropriate use of table size handling in V8 in Google Chrome prior to...

The Great DOM Fuzz-off of 2017

Posted by Ivan Fratric, Project Zero Introduction Historically, DOM engines have been one of the largest sources of web browser bugs. And while in the recent years the popularity of those kinds of bugs in targeted attacks has somewhat fallen in favor of Flash which allows for cross-browser exploi...

Memory corruption

Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft browser JavaScript engines render content when handling objects in memory, aka "Scripting Engine Memory...

Microsoft Windows Edge and Internet Explorer JavaScript Engine Remote Code Execution Vulnerability

Microsoft Windows 7, etc. are operating systems released by Microsoft Corporation, U.S.A. Microsoft Edge and Internet Explorer IE are web browsers that come with Windows. Microsoft Edge and Internet Explorer IE are both web browsers that come with Windows, the former being the default browser tha...

Microsoft Edge Memory Corruption Vulnerability (CNVD-2017-28318)

Microsoft Windows 10 is an operating system released by Microsoft Corporation.Microsoft Edge is a web browser that comes with the system.scripting engine is a JavaScript engine component. A memory corruption vulnerability exists in the scripting engine of Edge in Microsoft Windows 10 version 1703...

Microsoft Windows Internet Explorer and Edge JavaScript Engine Remote Code Execution Vulnerability

Microsoft Windows 7, etc. are operating systems released by Microsoft Corporation, U.S.A. Microsoft Edge and Internet Explorer IE are web browsers that come with Windows. Microsoft Edge and Internet Explorer IE are both web browsers that come with Windows, the former being the default browser tha...