CVE-2016-7201

Microsoft Edge-dagi Chakra JavaScript skript mexanizmi masofaviy tajovuzkorlarga o'zboshimchalik bilan kodni bajarishi yoki CVE-2016-7200, CVE-20202, CVE-20202-, CVE-20202-, CVE-20216-dan farqli zaiflik bo'lgan "Skript mexanizmi xotirasidagi korruptsiya zaifligi" deb nomlanuvchi yaratilgan veb-sayt orqali xizmat ko'rsatishni rad etish (xotira buzilishi) imkonini beradi. CVE-2016-7208, CVE-2016-7240, CVE-2016-7242 va CVE-2016-7243.

CVSS Vector

Manbalar

• http://packetstormsecurity.com/files/140382/Microsoft-Edge-chakra.dll-Information-Leak-Type-Confusion.html
• http://www.securityfocus.com/bid/94038
• http://www.securitytracker.com/id/1037245
• https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-129
• https://github.com/theori-io/chakra-2016-11