4 matches found
Microsoft Edge Chakra JIT Type Confusion Bug
Microsoft Edge: Chakra: JIT: Type confusion bug CVE-2018-8467 The switch statement only handles Js::TypeIdsArray but not Js::TypeIdsNativeIntArray and Js::TypeIdsNativeFloatArray. So for example, a native float array can be considered as of type ObjectType::Object under certain circumstances wher...
CVE-2018-8467
CVE-2018-8467 is a remote code execution vulnerability in the Chakra scripting engine used by Microsoft Edge and ChakraCore, caused by memory handling of objects. The issue enables code execution via crafted objects in memory and is associated with exploitation in the wild (Exploit-DB entries htt...
CVE-2018-8467
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8367, CVE-2018-8465,...
Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8467)
A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...