6 matches found
Microsoft Edge Chakra PathTypeHandlerBase::SetAttributesHelper Type Confusion
Microsoft Edge: Chakra: Type confusion with PathTypeHandlerBase::SetAttributesHelper CVE-2018-8384 Here's a snippet of PathTypeHandlerBase::SetAttributesHelper. PathTypeHandlerBase predTypeHandler = this; DynamicType currentType = instance-GetDynamicType; while predTypeHandler-GetPathLength...
CVE-2018-8384
creationtimestamp| type| source ---|---|--- 2018-09-18 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/45431...
Arbitrary Code Execution
microsoft.chakracore is vulnerable to arbitrary code execution. The lack of type checking can lead to memory corruption or arbitrary code being executed. This vulnerability affects Microsoft Edge. This CVE ID is different from CVE-2018-8380, CVE-2018-8381, CVE-2018-8384...
CVE-2018-8384
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-8266, CVE-2018-8380, CVE-2018-8381...
CVE-2018-8384
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-8266, CVE-2018-8380, CVE-2018-8381...
CVE-2018-8384
CVE-2018-8384 describes a remote code execution vulnerability in the Chakra scripting engine used by Microsoft Edge/ChakraCore, caused by memory handling of objects that can lead to memory corruption. The issue is labeled as a ChakraCore/Edge memory corruption vulnerability with a high-severity i...