First published: Thu Nov 10 2016(Updated: )
The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7200, CVE-2016-7202, CVE-2016-7203, CVE-2016-7208, CVE-2016-7240, CVE-2016-7242, and CVE-2016-7243.
Credit: secure@microsoft.com secure@microsoft.com secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Edge | ||
nuget/Microsoft.ChakraCore | <1.2.2 | 1.2.2 |
Microsoft Edge | ||
All of | ||
Microsoft Edge | ||
Any of | ||
Microsoft Windows 10 1507 | ||
Microsoft Windows 10 1511 | ||
Microsoft Windows 10 1607 | ||
Microsoft Windows Server 2016 | ||
All of | ||
Any of | ||
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.