Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiBee13oy of CloverSec LabsZDI-17-475
HistoryAug 01, 2017 - 12:00 a.m.

Microsoft Windows JavaScript super Keyword Uninitialized Memory Remote Code Execution Vulnerability

2017-08-0100:00:00
bee13oy of CloverSec Labs
www.zerodayinitiative.com
12

EPSS

0.041

Percentile

92.3%

JSON

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the super keyword in JavaScript. By performing actions in script an attacker can trigger access to memory prior to initialization. An attacker can leverage this vulnerability to execute arbitrary code under the context of the current process.

Related

symantec 1
mscve 1
checkpoint_advisories 1
threatpost 1
prion 10
cvelist 10
nvd 10
cve 10
osv 3
kaspersky 1
nessus 3
openvas 3
mskb 3
trendmicroblog 1
talosblog 1
symantec
symantec
Microsoft Edge CVE-2017-8598 Scripting Engine Remote Memory Corruption Vulnerability
2017-07-11 00:00:00
mscve
mscve
Microsoft Edge Memory Corruption Vulnerability
2017-07-11 07:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-8598)
2017-07-11 00:00:00
threatpost
threatpost
Microsoft Patch Tuesday Update Fixes 19 Critical Vulnerabilities
2017-07-11 16:36:23
prion
prion
Memory corruption
2017-07-11 21:29:00
Memory corruption
2017-07-11 21:29:00
Memory corruption
2017-07-11 21:29:00
cvelist
cvelist
CVE-2017-8596
2017-07-11 21:00:00
CVE-2017-8604
2017-07-11 21:00:00
CVE-2017-8605
2017-07-11 21:00:00
nvd
nvd
CVE-2017-8596
2017-07-11 21:29:01
CVE-2017-8605
2017-07-11 21:29:02
CVE-2017-8606
2017-07-11 21:29:02
cve
cve
CVE-2017-8596
2017-07-11 21:29:01
CVE-2017-8605
2017-07-11 21:29:02
CVE-2017-8601
2017-07-11 21:29:02
osv
osv
CVE-2017-8606
2017-07-11 21:29:02
CVE-2017-8608
2017-07-11 21:29:02
CVE-2017-8607
2017-07-11 21:29:02
kaspersky
kaspersky
KLA11070 Multiple vulnerabilities in Microsoft Edge and Microsoft Internet Explorer
2017-07-11 00:00:00
nessus
nessus
KB4025344: Windows 10 Version 1511 July 2017 Cumulative Update
2017-07-11 00:00:00
KB4025339: Windows 10 Version 1607 and Windows Server 2016 July 2017 Cumulative Update
2017-07-11 00:00:00
KB4025342: Windows 10 Version 1703 July 2017 Cumulative Update
2017-07-11 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4025344)
2017-07-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4025339)
2017-07-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4025342)
2017-07-12 00:00:00
mskb
mskb
July 11, 2017—KB4025344 (OS Build 10586.1007)
2017-07-11 07:00:00
July 11, 2017—KB4025339 (OS Build 14393.1480)
2017-07-11 07:00:00
July 11, 2017—KB4025342 (OS Build 15063.483)
2017-07-11 07:00:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of July 10, 2017
2017-07-14 12:00:02
talosblog
talosblog
Microsoft Patch Tuesday - July 2017
2017-07-11 12:59:00

EPSS

0.041

Percentile

92.3%

JSON
Related for ZDI-17-475
symantec1mscve1checkpoint_advisories1threatpost1prion10cvelist10nvd10cve10osv3kaspersky1nessus3openvas3mskb3trendmicroblog1talosblog1