3 matches found
Remote Code Execution (RCE)
Microsoft ChakraCore is vulnerable to remote code execution. This is due a lack of validation for return objects without any properties in AsmJs.cpp, which would allow a remote attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2017-0015...
CVE-2017-0067
CVE-2017-0134 is a remote code execution flaw in the Microsoft Edge scripting engine, caused by memory handling issues when rendering objects in memory. The vulnerability could allow an attacker to execute arbitrary code in the context of the current user if the target is enticed to open a specia...
Microsoft Edge CVE-2017-0067 Scripting Engine Remote Memory Corruption Vulnerability
Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. This could allow the attacker to execute arbitrary code in the context of the currently logged-in user. Failed...