Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.6
CVSSv2

CVE-2016-7200

Published: 10/11/2016 Updated: 12/10/2018
CVSS v2 Base Score: 7.6 | Impact Score: 10 | Exploitability Score: 4.9
CVSS v3 Base Score: 7.5 | Impact Score: 5.9 | Exploitability Score: 1.6
VMScore: 771
Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C
Subscribe to Microsoft

Vulnerability Summary

The Chakra JavaScript scripting engine in Microsoft Edge allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7201, CVE-2016-7202, CVE-2016-7203, CVE-2016-7208, CVE-2016-7240, CVE-2016-7242, and CVE-2016-7243.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft edge

Exploits

Exploit DB: Microsoft Edge - 'Array.filter' Information Leak
<!-- Source: bugschromiumorg/p/project-zero/issues/detail?id=922 There is an info leak in Arrayfilter In Chakra, the destination array that arrays are filtered into is initialized using ArraySpeciesCreate, which can create both native and variable arrays However, the loop that calls the filter function assumes that the destination ...
Exploit DB: Microsoft Edge (Windows 10) - 'chakra.dll' Information Leak / Type Confusion Remote Code Execution
Source: githubcom/theori-io/chakra-2016-11 Proofs of Concept: githubcom/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/40990zip chakradll Info Leak + Type Confusion for RCE Proof-of-Concept exploit for Edge bugs (CVE-2016-7200 & CVE-2016-7201) Tested on Windows 10 Edge (modernie stable) FillFromProto ...

Github Repositories

https://github.com/michaelpdu/md-blogs

Exploit Development Phrack phrackorg Security Technical Analysis Debugging Skills WinDBG tricks: add anchors into samples HTML/JS/VBS Analysis CVE-2016-7200-CVE-2016-7201-Edge Flash Analysis How to find hook point for dumping embedded flash? Translation X64 Deep Dive Machine Learning Open Source ML Solution Adversarial Machine Learning Techical Blogs A Complete Penetrat

https://github.com/michaelpdu/michaelpdu.github.io

Exploit Development Phrack phrackorg Security Technical Analysis Debugging Skills WinDBG tricks: add anchors into samples HTML/JS/VBS Analysis CVE-2016-7200-CVE-2016-7201-Edge Flash Analysis How to find hook point for dumping embedded flash? Translation X64 Deep Dive Machine Learning Open Source ML Solution Adversarial Machine Learning Techical Blogs A Complete Penetrat

https://github.com/theori-io/chakra-2016-11

Proof-of-Concept exploit for Edge bugs (CVE-2016-7200 & CVE-2016-7201)

chakradll Info Leak + Type Confusion for RCE Proof-of-Concept exploit for Edge bugs (CVE-2016-7200 & CVE-2016-7201) Tested on Windows 10 Edge (modernie stable) FillFromPrototypes_TypeConfusionhtml: WinExec notepadexe FillFromPrototypes_TypeConfusion_NoSChtml: 0xcc (INT 3) To run Download exploit/FillFromPrototypes_TypeConfusionhtml to a directory Serve the dire

https://github.com/nyerkym/sectools

chakradll Info Leak + Type Confusion for RCE Proof-of-Concept exploit for Edge bugs (CVE-2016-7200 & CVE-2016-7201) Tested on Windows 10 Edge (modernie stable) FillFromPrototypes_TypeConfusionhtml: WinExec notepadexe FillFromPrototypes_TypeConfusion_NoSChtml: 0xcc (INT 3) To run Download exploit/FillFromPrototypes_TypeConfusionhtml to a directory Serve the dire

Recent Articles

Sundown exploit kit weaves Edge hack hole
The Register • Darren Pauli • 11 Jan 2017

Thankfully most users are patched

Authors of the Sundown exploit kit have integrated a since patched and limited Microsoft Edge vulnerability from a security firm's public proof-of-concept. The addition of the twin bugs (CVE-2016-7200 and CVE-2016-7201) means unpactched users of one of the world's most unpopular web browsers are likely to be targeted by a wide cross-section of malware writers. It is no cause for high concern for most Windows users: the Edge browser by default applies patches automatically meaning fewer users wou...

Read more...

References

CWE-119http://www.securityfocus.com/bid/93968https://github.com/theori-io/chakra-2016-11http://packetstormsecurity.com/files/140382/Microsoft-Edge-chakra.dll-Information-Leak-Type-Confusion.htmlhttps://www.exploit-db.com/exploits/40990/http://www.securitytracker.com/id/1037245https://www.exploit-db.com/exploits/40785/https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-129https://nvd.nist.govhttps://github.com/michaelpdu/md-blogshttps://github.com/theori-io/chakra-2016-11https://www.theregister.co.uk/2017/01/11/sundown_exploit_kit_weaves_edge_hack_hole/https://www.exploit-db.com/exploits/40785/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040privilege escalationCVE-2024-4112CVE-2024-32872man-in-the-middleCVE-2024-32788bypassCVE-2024-3400CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook