CVE-2017-11767
N/A
N/A
Summary
ChakraCore allows an attacker to gain the same user rights as the current user, due to the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability".
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Microsoft Corporation | ChakraCore | ChakraCore | affected |
Weaknesses
- Remote Code Execution
ADP Enrichment
CVE Program Container
Additional References
- http://www.securitytracker.com/id/1039369
- http://www.securityfocus.com/bid/100838
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11767
References
- http://www.securitytracker.com/id/1039369
- http://www.securityfocus.com/bid/100838
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11767
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.