CVE-2017-11767

Summary

ChakraCore allows an attacker to gain the same user rights as the current user, due to the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability".

Affected Software

VendorProductVersion RangeStatus
Microsoft CorporationChakraCoreChakraCoreaffected

Weaknesses

  • Remote Code Execution

ADP Enrichment

CVE Program Container

Additional References

References