|
|||
Rule General Information |
---|
Release Date: | 2019-06-24 | |
Rule Name: | Microsoft Edge Chakra Javascript Engine asm Type Confusion Vulnerability (CVE-2017-0093) | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | A remote code execution vulnerability in Microsoft Edge exists in the way that the Scripting Engine renders when handling objects in memory in Microsoft browsers. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user, aka "Scripting Engine Memory Corruption Vulnerability." | |
Impact: | An attacker could exploit this vulnerability to have unspecified effect. | |
Affected OS: | Windows, Linux, FreeBSD, Solaris, Other Unix, Network Device, Mac OS, iOS, Android, Others | |
Reference: | SecurityFocusBID:97419 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0093 SecurityTrackerID:1038234 |
|
Solutions |
---|
The vendors have released upgrade patches to fix vulnerabilities, please visit: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0093 |