Lucene search
Zhen FengWen Xu of KeenLabTencentZDI-16-283HistoryMay 10, 2016 - 12:00 a.m.
(Pwn2Own) Microsoft Edge JavaScript fill Out-Of-Bounds Access Remote Code Execution Vulnerability
2016-05-1000:00:00
Zhen FengWen Xu of KeenLabTencent
www.zerodayinitiative.com
11
0.261 Low
EPSS
Percentile
96.8%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Edge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the implementation of the JavaScript fill method. By performing certain operations in script, an attacker can cause JavaScript to access outside the bounds of an array. An attacker can leverage this vulnerability to execute code under the context of the current process.
Related
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2016-05-10 07:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Edge Memory Corruption (MS16-052: CVE-2016-0193)
2016-05-10 00:00:00
symantec
symantec
cve
cve
prion
prion
Memory corruption
2016-05-11 01:59:00
Memory corruption
2016-05-11 01:59:00
Memory corruption
2016-05-11 01:59:00
cvelist
cvelist
nvd
nvd
osv
osv
ChakraCore RCE Vulnerability
2022-05-14 02:25:02
ChakraCore RCE Vulnerability
2022-05-14 02:24:57
ChakraCore RCE Vulnerability
2022-05-14 02:24:57
github
github
ChakraCore RCE Vulnerability
2022-05-14 02:24:57
ChakraCore RCE Vulnerability
2022-05-14 02:25:02
ChakraCore RCE Vulnerability
2022-05-14 02:24:57
nessus
nessus
MS16-052: Cumulative Security Update for Microsoft Edge (3155538)
2016-05-10 00:00:00
mskb
mskb
MS16-052: Cumulative Security update for Microsoft Edge: May 10, 2016
2016-05-10 00:00:00
Cumulative Update for Windows 10: May 10, 2016
2016-05-10 07:00:00
openvas
openvas
Microsoft Edge Multiple Vulnerabilities (3155538)
2016-05-11 00:00:00
kaspersky
kaspersky
KLA10806 Multiple vulnerabilities in Microsoft Internet Explorer and Edge
2016-05-10 00:00:00