Lucene search
K

4 matches found

Packet Storm
Packet Storm
added 2018/10/11 12:0 a.m.73 views

Microsoft Edge Chakra JIT Type Confusion Bug

Microsoft Edge: Chakra: JIT: Type confusion bug CVE-2018-8467 The switch statement only handles Js::TypeIdsArray but not Js::TypeIdsNativeIntArray and Js::TypeIdsNativeFloatArray. So for example, a native float array can be considered as of type ObjectType::Object under certain circumstances wher...

6.6AI score0.69019EPSS
Exploits2
CVE
CVE
added 2018/09/13 12:0 a.m.100 views

CVE-2018-8467

CVE-2018-8467 is a remote code execution vulnerability in the Chakra scripting engine used by Microsoft Edge and ChakraCore, caused by memory handling of objects. The issue enables code execution via crafted objects in memory and is associated with exploitation in the wild (Exploit-DB entries htt...

7.6CVSS7.4AI score0.69019EPSS
Exploits2References4Affected Software1
Cvelist
Cvelist
added 2018/09/13 12:0 a.m.30 views

CVE-2018-8467

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8367, CVE-2018-8465,...

7.5AI score0.69019EPSS
Exploits2References4
Check Point Advisories
Check Point Advisories
added 2018/09/11 12:0 a.m.7 views

Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8467)

A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS7.9AI score0.69019EPSS
Exploits2
Rows per page
Query Builder