4 matches found
Remote Code Execution (RCE)
Microsoft ChakraCore is vulnerable to remote code execution. This is due a lack of validation for return objects without any properties in AsmJs.cpp, which would allow a remote attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2017-0015...
CVE-2017-0131
CVE-2017-0131 describes a remote code execution in Microsoft scripting engines when rendering objects in memory in Microsoft browsers. The root cause is memory corruption during object handling in the scripting engine, allowing an attacker to execute arbitrary code in the context of the current u...
KLA10968 Multiple vulnerabilities in Microsoft Edge
Multiple serious vulnerabilities have been found in Microsoft Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information and bypass security restrictions. Below is a complete list of vulnerabilities: 1. An incorrect handling of...
Microsoft Edge Memory Corruption (MS17-007: CVE-2017-0131)
A remote code execution vulnerability exists in Microsoft Edge. The vulnerability is due to an out of bounds read when Microsoft Edge improperly accesses objects in memory. A remote attacker can exploit this vulnerability and execute arbitrary code in the context of the current user...