CVSS: 7.6EPSS: 7%CPEs: 16EXPL: 0CVE-2017-8607
https://notcve.org/view.php?id=CVE-2017-8607
Microsoft browsers in Microsoft Windows 7, Windows Server 2008 and R2, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engines fail to render when handling objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8598, CVE-2017-8596, CVE-2017-8618, CVE-2017-8619, CVE-2017-8610, CVE-2017-8601, CVE-2017-8603, CVE-2017-8604, CVE-2017-8605, CVE-2017-8595, CVE-2017-8606, CVE-2017-8608, and CVE-2017-8609 Los navegadores Microsoft en Microsoft Windows 7, Windows Server 2008 and R2, Windows 8.1 y Windows RT 8.1, Windows Server 2012 y R2, Windows 10 Gold, 1511, 1607 y 1703 y Windows Server 2016 permiten que un atacante ejecute código arbitrario en el contexto del usuario actual cuando los motores JavaScript fracasan a la hora de representarse cuando gestionan objetos en la memoria. Esto también se conoce como "Scripting Engine Memory Corruption Vulnerability". El ID de este CVE es diferente de CVE-2017-8598, CVE-2017-8596, CVE-2017-8618, CVE-2017-8619, CVE-2017-8610, CVE-2017-8601, CVE-2017-8603, CVE-2017-8604, CVE-2017-8605, CVE-2017-8595, CVE-2017-8606, CVE-2017-8608 y CVE-2017-8609" } • http://www.securityfocus.com/bid/99410 http://www.securitytracker.com/id/1038848 http://www.securitytracker.com/id/1038849 https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8607 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.6EPSS: 7%CPEs: 14EXPL: 0CVE-2017-8608
https://notcve.org/view.php?id=CVE-2017-8608
Microsoft browsers in Microsoft Windows Server 2008 and R2, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engines fail to render when handling objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8598, CVE-2017-8596, CVE-2017-8610, CVE-2017-8601, CVE-2017-8618, CVE-2017-8619, CVE-2017-8603, CVE-2017-8604, CVE-2017-8605, CVE-2017-8595, CVE-2017-8606, CVE-2017-8607, and CVE-2017-8609 Los navegadores Microsoft en Microsoft Windows Server 2008 and R2, Windows 8.1 y Windows RT 8.1, Windows Server 2012 y R2, Windows 10 Gold, 1511, 1607 y 1703 y Windows Server 2016 permiten que un atacante ejecute código arbitrario en el contexto del usuario actual cuando los motores JavaScript fracasan a la hora de representarse cuando gestionan objetos en la memoria. Esto también se conoce como "Scripting Engine Memory Corruption Vulnerability". El ID de este CVE es diferente de CVE-2017-8598, CVE-2017-8596, CVE-2017-8610, CVE-2017-8601, CVE-2017-8618, CVE-2017-8619, CVE-2017-8603, CVE-2017-8604, CVE-2017-8605, CVE-2017-8595, CVE-2017-8606, CVE-2017-8607 y CVE-2017-8609". • http://www.securityfocus.com/bid/99412 http://www.securitytracker.com/id/1038848 http://www.securitytracker.com/id/1038849 https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8608 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2017-8611
https://notcve.org/view.php?id=CVE-2017-8611
Microsoft Edge on Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows remote attackers to spoof web content via a crafted web site, aka "Microsoft Edge Spoofing Vulnerability." Microsoft Edge en Microsoft Windows 10 Gold, 1511, 1607 y 1703 y Windows Server 2016 permite que atacantes remotos suplanten contenido web mediante un sitio web manipulado. Esto también se conoce como "Microsoft Edge Spoofing Vulnerability." • http://www.securityfocus.com/bid/99391 http://www.securitytracker.com/id/1038858 https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8611 • CWE-20: Improper Input Validation •
CVSS: 7.6EPSS: 4%CPEs: 5EXPL: 0CVE-2017-8595 – Microsoft Chakra Spread Operator Stack-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2017-8595
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fails to render when handling objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8596, CVE-2017-8601,CVE-2017-8618, CVE-2017-8619, CVE-2017-8610, CVE-2017-8601, CVE-2017-8603, CVE-2017-8604, CVE-2017-8605, CVE-2017-8606, CVE-2017-8607, CVE-2017-8608, and CVE-2017-8609. Microsoft Edge en Microsoft Windows 10 Gold 1511, 1607 y 1703 y Windows Server 2016 permite que un atacante ejecute código arbitrario en el contexto del usuario actual cuando el motor JavaScript fracasa a la hora de representarse cuando gestiona objetos en Microsoft Edge. Esto también se conoce como "Scripting Engine Memory Corruption Vulnerability". El ID de este CVE es diferente de CVE-2017-8596, CVE-2017-8601, CVE-2017-8618, CVE-2017-8619, CVE-2017-8610, CVE-2017-8601, CVE-2017-8603, CVE-2017-8604, CVE-2017-8605, CVE-2017-8606, CVE-2017-8607, CVE-2017-8608 y CVE-2017-8609. • http://www.securityfocus.com/bid/99403 http://www.securitytracker.com/id/1038849 https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8595 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.6EPSS: 1%CPEs: 4EXPL: 0CVE-2017-8596
https://notcve.org/view.php?id=CVE-2017-8596
Microsoft Edge in Microsoft Windows 10 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fails to render when handling objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8598, CVE-2017-8610, CVE-2017-8595, CVE-2017-8601, CVE-2017-8603, CVE-2017-8604, CVE-2017-8605, CVE-2017-8606, CVE-2017-8607, CVE-2017-8608, and CVE-2017-8609. Microsoft Edge en Microsoft Windows 10 1607 y 1703 y Windows Server 2016 permite que un atacante ejecute código arbitrario en el contexto del usuario actual cuando el motor JavaScript fracasa a la hora de representarse cuando gestiona objetos en Microsoft Edge. Esto también se conoce como "Scripting Engine Memory Corruption Vulnerability". El ID de este CVE es diferente de CVE-2017-8598, CVE-2017-8610, CVE-2017-8595, CVE-2017-8601, CVE-2017-8603, CVE-2017-8604, CVE-2017-8605, CVE-2017-8606, CVE-2017-8607, CVE-2017-8608 y CVE-2017-8609. • http://www.securityfocus.com/bid/99405 https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8596 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •