Lucene search
K

6 matches found

seebug.org
seebug.org
added 2017/10/17 12:0 a.m.35 views

Microsoft Edge Scripting Engine Remote Memory Corruption Vulnerability(CVE-2017-11809)

Here's a snippet of the method that interprets a javascript function's bytecode. Js::Var Js::InterpreterStackFrame::INTERPRETERLOOPNAME PROBESTACKscriptContext, Js::Constants::MinStackInterpreter; closureInitDone Assertthis-mreader.GetCurrentOffset == 0; this-InitializeClosures; DoStackScopeSlots...

7.6CVSS7.6AI score0.68027EPSS
Exploits3
Circl
Circl
added 2017/10/17 12:0 a.m.22 views

CVE-2017-11809

creationtimestamp| type| source ---|---|--- 2017-10-17 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/42999...

7.6CVSS7.6AI score0.68027EPSS
Exploits3References1
Check Point Advisories
Check Point Advisories
added 2017/10/16 12:0 a.m.8 views

Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-11809)

A Memory Corruption Vulnerability exists in Microsoft Edge. The vulnerability is due to the way JavaScript engine renders when handling objects in memory. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...

7.6CVSS7.3AI score0.68027EPSS
Exploits3
Prion
Prion
added 2017/10/13 1:29 p.m.18 views

Memory corruption

ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability"...

7.6CVSS7.6AI score0.69163EPSS
Exploits20References4Affected Software1
Prion
Prion
added 2017/10/13 1:29 p.m.16 views

Memory corruption

ChakraCore and Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability"...

7.6CVSS7.6AI score0.69163EPSS
Exploits20References3
CVE
CVE
added 2017/10/13 1:0 p.m.92 views

CVE-2017-11809

CVE-2017-11809 affects ChakraCore and Microsoft Edge on Windows 10 (Gold, 1511, 1607, 1703) and Windows Server 2016. The issue is a memory-handling vulnerability in the scripting engine that can allow arbitrary code execution in the context of the current user. There are public exploit references...

7.6CVSS7.8AI score0.68027EPSS
Exploits3References4Affected Software2
Rows per page
Query Builder