2820 matches found
CVE-2017-11821
ChakraCore and Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11792,...
CVE-2017-11798
CVE-2017-11798 affects Microsoft Edge on Windows 10 (Gold, 1511, 1607, 1703) and Windows Server 2016. The vulnerability stems from how the scripting engine handles objects in memory, enabling an attacker to execute arbitrary code in the context of the current user. The CVSS metrics from the initi...
CVE-2017-11811
CVE-2017-11811 affects ChakraCore and Microsoft Edge on Windows 10 (versions 1511, 1607, 1703) and Windows Server 2016. The vulnerability stems from how the Chakra scripting engine handles in-memory objects, enabling an attacker to execute arbitrary code in the context of the current user. The is...
CVE-2017-11798
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is...
CVE-2017-11792
CVE-2017-11792 describes a memory-handling vulnerability in the ChakraCore scripting engine (used by Microsoft Edge) on Windows 10 version 1703 that allows an attacker to execute arbitrary code in the context of the current user. The connected advisories reference ChakraCore RCE/Memory Corruption...
CVE-2017-11796
Summary: CVE-2017-11796 pertains to ChakraCore and Microsoft Edge on Windows 10 1703, involving a memory corruption issue in the scripting engine that handles in-memory objects. Affected components: ChakraCore scripting engine; Windows 10 1703 with Microsoft Edge. Root cause: Memory corruption wi...
CVE-2017-11821
Summary: CVE-2017-11821 is part of ChakraCore/Edge-related memory corruption vulnerabilities. The connected advisories describe a vulnerability in the ChakraCore scripting engine where how in-memory objects are handled can allow an attacker to execute arbitrary code in the context of the current ...
CVE-2017-11804
CVE-2017-11804 affects ChakraCore and Microsoft Edge on Windows 10 (Gold/1511/1607/1703) and Windows Server 2016. The root cause is how the scripting engine manages in-memory objects, enabling an attacker to execute arbitrary code in the context of the current user. The linked advisories confirm ...
CVE-2017-11800
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is uniqu...
CVE-2017-11801
CVE-2017-11801 is a ChakraCore-hosted RCE vulnerability. The connected documents describe an issue where the ChakraCore scripting engine exposes memory handling flaws that allow an attacker to execute arbitrary code in the context of the current user. The core detail across sources is that the bu...
CVE-2017-11802
CVE-2017-11802 affects ChakraCore and Microsoft Edge on Windows 10 (Gold, 1511, 1607, 1703) and Windows Server 2016. The vulnerability stems from how the Chakra scripting engine handles memory objects, enabling an attacker to execute arbitrary code in the context of the current user. Exploitation...
CVE-2017-11797
CVE-2017-11797 is described in the initial document as a ChakraCore scripting engine vulnerability that allows arbitrary code execution under the current user context, caused by memory handling in ChakraCore. Connected advisories (GHSA entries) reiterate a ChakraCore RCE vulnerability and referen...
Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CNVD-2017-30325)
Edge is Microsoft's browser for Windows 10, characterized as fast and secure. A memory corruption vulnerability exists in the way the Microsoft Edge scripting engine handles objects in memory, which can be exploited by an attacker to execute arbitrary code in the context of the current user or to...
Microsoft Edge Scripting Engine Remote Memory Corruption Vulnerability (CNVD-2017-30541)
Microsoft Edge is the web browser built into the Windows 10 version. Microsoft Edge suffers from a remote memory corruption vulnerability in the scripting engine's handling of in-memory objects, which can be exploited by an attacker to corrupt memory by executing arbitrary code in the current use...
Microsoft Internet Explorer Scripting Memory Corruption Vulnerability
Microsoft Windows Server 2016 and others are operating systems released by Microsoft Corporation USA.Internet Explorer IE is one of the browsers. scripting engine is one of the scripting engines. A memory corruption vulnerability exists in the scripting engine in IE versions 9, 10 and 11 in...
Microsoft Edge Scripting Engine Remote Memory Corruption Vulnerability (CNVD-2017-30539)
Microsoft Edge is the web browser built into the Windows 10 version. A remote memory corruption vulnerability exists in the JavaScript engine content when the Microsoft Edge scripting engine handles in-memory objects, which can be exploited by an attacker to corrupt memory by executing arbitrary...
Microsoft Edge Scripting Engine Remote Memory Corruption Vulnerability (CNVD-2017-30540)
Microsoft Edge is the web browser built into the Windows 10 version. Microsoft Edge suffers from a remote memory corruption vulnerability in the scripting engine's handling of in-memory objects, which can be exploited by an attacker to corrupt memory by executing arbitrary code in the current use...
Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CNVD-2017-30351)
Microsoft Windows 10 and Windows Server 2016 are both products of Microsoft Corporation USA. The former is a set of operating systems for personal computers and the latter is a set of server operating systems.Edge is one of the default browsers that comes with the system.Scripting engine is one o...
Microsoft Edge Scripting Engine Remote Memory Corruption Vulnerability (CNVD-2017-30542)
Microsoft Edge is the web browser built into the Windows 10 version. Microsoft Edge suffers from a remote memory corruption vulnerability in the scripting engine's handling of in-memory objects, which can be exploited by an attacker to corrupt memory by executing arbitrary code in the current use...
Microsoft Edge Scripting Engine Remote Memory Corruption Vulnerability (CNVD-2017-30543)
Microsoft Edge is the web browser built into the Windows 10 version. Microsoft Edge suffers from a remote memory corruption vulnerability in the scripting engine's handling of in-memory objects, which can be exploited by an attacker to corrupt memory by executing arbitrary code in the current use...