Lucene search
K

12 matches found

seebug.org
seebug.org
added 2017/12/04 12:0 a.m.30 views

Microsoft Edge: Chakra: JIT: Incorrect function declaration scope(CVE-2017-11870)

In the following JavaScript code, both of the print calls must print out "undefined" because of "x" is a formal parameter. But the second print call prints out "function x ". This bug may lead to type confusion in JITed code. function fx printx; function x printx; The following code in...

7.6CVSS7.4AI score0.59642EPSS
Exploits3
Circl
Circl
added 2017/11/27 12:0 a.m.9 views

CVE-2017-11870

creationtimestamp| type| source ---|---|--- 2017-11-27 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/43182...

7.6CVSS7.5AI score0.59642EPSS
Exploits3References1
0day.today
0day.today
added 2017/11/26 12:0 a.m.65 views

Microsoft Edge Chakra JIT Incorrect Function Declaration Scope Exploit

Exploit for windows platform in category dos / poc Microsoft Edge: Chakra: JIT: Incorrect function declaration scope CVE-2017-11870 In the following JavaScript code, both of the print calls must print out "undefined" because of "x" is a formal parameter. But the second print call prints out...

7.6CVSS7.5AI score0.59642EPSS
Exploits3
Packet Storm
Packet Storm
added 2017/11/25 12:0 a.m.36 views

Microsoft Edge Chakra JIT Incorrect Function Declaration Scope

Microsoft Edge: Chakra: JIT: Incorrect function declaration scope CVE-2017-11870 In the following JavaScript code, both of the print calls must print out "undefined" because of "x" is a formal parameter. But the second print call prints out "function x ". This bug may lead to type confusion in...

0.4AI score0.59642EPSS
Exploits3
Prion
Prion
added 2017/11/15 3:29 a.m.22 views

Memory corruption

ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an...

7.6CVSS7.3AI score0.69802EPSS
Exploits19References4
Prion
Prion
added 2017/11/15 3:29 a.m.24 views

Memory corruption

ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an...

7.6CVSS7.3AI score0.69802EPSS
Exploits19References4
Prion
Prion
added 2017/11/15 3:29 a.m.26 views

Memory corruption

ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an...

7.6CVSS7.3AI score0.69802EPSS
Exploits19References4
Prion
Prion
added 2017/11/15 3:29 a.m.21 views

Memory corruption

ChakraCore and Microsoft Edge in Windows 10 1709 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from...

7.6CVSS7.3AI score0.69802EPSS
Exploits19References3
Prion
Prion
added 2017/11/15 3:29 a.m.22 views

Memory corruption

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current...

7.6CVSS7.5AI score0.69802EPSS
Exploits19References4Affected Software1
Prion
Prion
added 2017/11/15 3:29 a.m.27 views

Memory corruption

Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to take control of an affected system, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID ...

7.6CVSS7.3AI score0.69802EPSS
Exploits19References4
CVE
CVE
added 2017/11/15 3:0 a.m.93 views

CVE-2017-11870

CVE-2017-11870 affects ChakraCore and Microsoft Edge on Windows 10 (1703/1709) and Windows Server 1709, arising from how the scripting engine handles objects in memory. The vulnerability is described as a memory corruption issue in the scripting engine that can let an attacker execute code with t...

7.6CVSS7.4AI score0.59642EPSS
Exploits3References4Affected Software2
Symantec
Symantec
added 2017/11/14 12:0 a.m.56 views

Microsoft Edge Scripting Engine CVE-2017-11870 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

7.6CVSS0.5AI score0.59642EPSS
Exploits3
Rows per page
Query Builder