3 matches found
Remote Code Execution (RCE)
Microsoft ChakraCore is vulnerable to remote code execution. This is due a lack of validation for return objects without any properties in AsmJs.cpp, which would allow a remote attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2017-0015...
CVE-2017-0035
CVE-2017-0134 is described in the connected advisory as a remote code execution vulnerability in Microsoft Edge’s scripting engine, caused by memory handling of objects in memory. The vulnerability could let a remote attacker execute arbitrary code in the context of the current user, with the pot...
Microsoft Edge Memory Corruption (MS17-007: CVE-2017-0035)
A remote code execution vulnerability exists in Microsoft Edge. The vulnerability is due to a memory corruption when handling of objects in memory. A remote attacker could exploit the vulnerability by enticing the target user to open a specially crafted js file. Successful exploitation could caus...