CVE-2016-7205

Name of the Vulnerable Software and Affected Versions Microsoft Edge versions (affected versions not specified) Microsoft Windows Server 2008 R2 SP1 Microsoft Windows 7 SP1 Microsoft Windows 8.1 Microsoft Windows Server 2012 Gold and R2 Microsoft Windows RT 8.1 Microsoft Windows 10 Gold, 1511, and 1607 Microsoft Windows Server 2016

Description The issue is caused by a buffer overflow in the Chakra JavaScript engine of Microsoft Edge, allowing remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a specially crafted website. This can be achieved through a crafted web site, potentially affecting the system. The estimated number of potentially affected devices and details about real-world incidents are not provided.

Recommendations For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016, consider restricting access to the Animation Manager as a temporary workaround until a patch is available.