Lucene search
K

8 matches found

0day.today
0day.today
added 2018/04/17 12:0 a.m.39 views

Microsoft Edge - OpenProcess() ACG Bypass Exploit

Exploit for windows platform in category dos / poc Each Edge Content process MicrosoftEdgeCP.exe needs to call SetProcessMitigationPolicy on itself to enable ACG. The callstack when this happens is: 00 KERNELBASE!SetProcessMitigationPolicy 01 MicrosoftEdgeCP!SetProcessDynamicCodePolicy+0xc0 02...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2018/04/16 12:0 a.m.42 views

Microsoft Edge - 'OpenProcess()' ACG Bypass

Each Edge Content process MicrosoftEdgeCP.exe needs to call SetProcessMitigationPolicy on itself to enable ACG. The callstack when this happens is: 00 KERNELBASE!SetProcessMitigationPolicy 01 MicrosoftEdgeCP!SetProcessDynamicCodePolicy+0xc0 02 MicrosoftEdgeCP!StartContentProcessExe+0x164 03...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2018/04/16 12:0 a.m.36 views

Microsoft Edge - OpenProcess() ACG Bypass

Microsoft Edge - OpenProcess ACG Bypass Each Edge Content process MicrosoftEdgeCP.exe needs to call SetProcessMitigationPolicy on itself to enable ACG. The callstack when this happens is: 00 KERNELBASE!SetProcessMitigationPolicy 01 MicrosoftEdgeCP!SetProcessDynamicCodePolicy+0xc0 02...

0.6AI score
Exploits0
0day.today
0day.today
added 2018/02/17 12:0 a.m.23 views

Microsoft Edge - UnmapViewOfFile ACG Bypass Vulnerability

Exploit for windows platform in category dos / poc Background: To implement ACG https://blogs.windows.com/msedgedev/2017/02/23/mitigating-arbitrary-native-code-execution/VM4y5oTSGCRde3sk.97, Edge uses a separate process for JIT compiling. This JIT Process is also responsible for mapping native co...

7AI score
Exploits0
0day.today
0day.today
added 2017/08/17 12:0 a.m.45 views

Microsoft Chakra JIT Server IRBuilder::Build Integer Overflow Exploit

The Microsoft Chakra JIT server suffers from an integer overflow in IRBuilder::Build. Microsoft Chakra JIT server integer overflow in IRBuilder::Build CVE-2017-8637 There is an issue in Chakra JIT server that can be potentially exploited to compromise the JIT process from a compromised browser...

2.6CVSS6.6AI score0.05014EPSS
Exploits2
seebug.org
seebug.org
added 2017/08/17 12:0 a.m.35 views

Microsoft Edge Scripting Engine Information Disclosure Vulnerability(CVE-2017-8659)

There is an issue in Chakra JIT server that can be potentially exploited to compromise the JIT process from a compromised browser content process. Bugs like this could potentially be used to bypass ACG Arbitrary Code Guard in Microsoft Edge. The issue has been confirmed on a ChakraCore build from...

4.3CVSS6.4AI score0.06002EPSS
Exploits2
Microsoft CVE
Microsoft CVE
added 2017/08/08 7:0 a.m.32 views

Scripting Engine Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists in Microsoft Edge as a result of how memory is accessed in code compiled by the Edge Just-In-Time JIT compiler that allows Arbitrary Code Guard ACG to be bypassed. By itself, this ACG bypass vulnerability does not allow arbitrary code execution...

5.3CVSS1.9AI score0.05014EPSS
Exploits2
Kaspersky
Kaspersky
added 2017/08/08 12:0 a.m.76 views

KLA11084 Multiple vulnerabilities in Microsoft Edge and Microsoft Internet Explorer

Multiple serious vulnerabilities have been found in Microsoft Internet Explorer and Microsoft Edge. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, execute arbitrary code and obtain sensitive information. Below is a complete list of...

8.8CVSS8.5AI score0.72116EPSS
Exploits52References70
Rows per page
Query Builder