CVE-2016-3265

CVE-2016-3265 impacts the Chakra JavaScript engine used by Microsoft Edge (ChakraCore). The connected documents describe a memory corruption vulnerability in the ChakraJS engine that could allow a remote attacker to execute arbitrary code or cause a denial of service via a crafted web site. The r...

Microsoft Edge Multiple Vulnerabilities (3169999)

This host is missing a critical security update according to Microsoft Bulletin MS16-085. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Edge Memory Corruption Vulnerability (CNVD-2016-04193)

Microsoft Edge is a browser that comes with win10. A memory corruption vulnerability exists in the way the Chakra JavaScript engine used by Microsoft Edge is rendered, allowing remote attackers to exploit the vulnerability to build special WEB pages that users are tricked into parsing, which can...

CVE-2016-3214

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3199...

CVE-2016-3202

The Microsoft 1 Chakra JavaScript, 2 JScript, and 3 VBScript engines, as used in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, allow remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruptio...

Memory corruption

The Microsoft 1 Chakra JavaScript, 2 JScript, and 3 VBScript engines, as used in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, allow remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruptio...

CVE-2016-3199

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3214...

CVE-2016-3214

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3199...

CVE-2016-3214

The CVE-2016-3214 entry concerns the Chakra JavaScript engine used by Microsoft Edge. The provided documents describe a memory corruption vulnerability in Chakra that can be triggered by a crafted web site, enabling remote code execution or a denial of service. The connected advisories and CVE re...

CVE-2016-3199

The Chakra JavaScript engine in Microsoft Edge is affected by CVE-2016-3199, described as a memory corruption vulnerability triggered by a crafted web site that can lead to remote code execution or a denial of service. Connected advisories (GHSA-VFJW-CRCQ-Q92V and GHSA-538H-6RV2-WMJ3) reference a...

Microsoft Edge Chakra JavaScript Scripting Engine Memory Corruption Vulnerability (CNVD-2016-04074)

Microsoft Edge is a web browser developed by Microsoft and is the default browser that comes with the Windows 10 operating system.Chakra JavaScript engine is a JavaScript engine component used by Edge web browser. A memory vulnerability exists in the way the Chakra JavaScript engine used in...

MS16-068: Cumulative Security Update for Microsoft Edge (3163656)

The version of Microsoft Edge installed on the remote Windows host is missing Cumulative Security Update 3163656. It is, therefore, affected by multiple vulnerabilities : - A security feature bypass vulnerability exists due to a failure to properly validate specially crafted documents. An...

Microsoft Edge JavaScript Engine Memory Corruption (MS16-052: CVE-2016-0186)

A memory corruption vulnerability exists in Microsoft Edge Chakra JavaScript Engine. This vulnerability is due to an improper validation in Array.unshift or Array.shift methods. A remote attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...

CVE-2016-0186

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0191 and CVE-2016-0193...

Memory corruption

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0186 and CVE-2016-0193...

CVE-2016-0191

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0186 and CVE-2016-0193...

CVE-2016-0191

CVE-2016-0191 concerns a memory corruption/remote code execution vulnerability in the Chakra JavaScript engine used by Microsoft Edge. The initial description states that a crafted website can trigger arbitrary code execution or a denial of service, but the connected documents do not supply concr...

Microsoft Edge Arbitrary Code Execution Vulnerability

Microsoft Edge is a web browser developed by Microsoft USA and is the default browser that comes with the Windows 10 operating system. A security vulnerability in Microsoft Edge's Chakra JavaScript engine allows a remote attacker to build special WEB pages that can be tricked into parsing by user...

CVE-2016-0024

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code via unspecified vectors, aka "Scripting Engine Memory Corruption Vulnerability."...

Memory corruption

The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code via unspecified vectors, aka "Scripting Engine Memory Corruption Vulnerability."...