5 matches found
Microsoft Edge: Chakra: Incorrect scope handling(CVE-2018-0774)
PoC: function funcarg = function printfunc; // SetHasOwnLocalInClosure should be called for the param scope in the PostVisitFunction function. printfunc; function func ; Chakra fails to distinguish whether the function is referenced in the param scope and ends up to emit an invalid opcode. functi...
Microsoft Edge Chakra Incorrect Scope Handling
Microsoft Edge: Chakra: Incorrect scope handling CVE-2018-0774 PoC: function funcarg = function printfunc; // SetHasOwnLocalInClosure should be called for the param scope in the PostVisitFunction function. printfunc; function func ; Chakra fails to distinguish whether the function is referenced i...
CVE-2018-0774
creationtimestamp| type| source ---|---|--- 2018-01-17 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/43715...
Memory corruption
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is...
CVE-2018-0774
CVE-2018-0774 is a Microsoft Edge scripting engine memory corruption vulnerability in Windows 10 1709 that allows remote code execution in the context of the logged-in user. The issue stems from how the Edge scripting engine handles objects in memory. Connected sightings indicate this CVE was exp...