CVE-2018-8178

Name of the Vulnerable Software and Affected Versions ChakraCore (affected versions not specified) Internet Explorer 11 (affected versions not specified) Microsoft Edge (affected versions not specified)

Description A remote code execution issue exists due to the way Microsoft browsers access objects in memory. This could allow an attacker to execute arbitrary code in the context of the current user. If the current user has administrative rights, the attacker could gain control of the system, enabling them to install programs, view, change, or delete data, and create new accounts with full user rights. The issue is caused by a buffer overflow in memory, which can be exploited by a remote attacker.

Recommendations For ChakraCore, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Internet Explorer 11, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.