Rapid7 Vulnerability & Exploit Database

Microsoft Windows: CVE-2017-0238: Microsoft Edge Memory Corruption Vulnerability

Free InsightVM Trial No Credit Card Necessary

2024 Attack Intel Report Latest research by Rapid7 Labs

Back to Search

Microsoft Windows: CVE-2017-0238: Microsoft Edge Memory Corruption Vulnerability

Severity

CVSS

(AV:N/AC:H/Au:N/C:C/I:C/A:C)

Published

05/09/2017

Created

07/25/2018

Added

06/14/2017

Modified

06/10/2024

Description

A remote code execution vulnerability exists in Microsoft browsers in the way JavaScript scripting engines handle objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0224, CVE-2017-0228, CVE-2017-0229, CVE-2017-0230, CVE-2017-0234, CVE-2017-0235, and CVE-2017-0236.

Solution(s)

microsoft-windows-windows_10-1507-kb4019474
microsoft-windows-windows_10-1511-kb4019473
microsoft-windows-windows_10-1607-kb4019472
microsoft-windows-windows_10-1703-kb4016871
msft-kb4018271-029e80a0-c3e7-476a-addc-6e2ee9272652
msft-kb4018271-0a3c5e93-f2e0-4fe4-ac13-9441352d889d
msft-kb4018271-0c21eb41-41c8-4ac8-b74a-a1ac940cbd19
msft-kb4018271-0faa8bb3-23ab-4ac8-a402-95bbc12436b1
msft-kb4018271-1020be2e-6910-4095-8cf2-b398122140f7
msft-kb4018271-2f764af7-543b-497c-ad07-3d138623d5ba
msft-kb4018271-5a278124-59da-4b37-8aed-3b4b30c8e7fb
msft-kb4018271-5d605b9b-72ae-4578-91ce-dddd6bef7495
msft-kb4018271-6343f284-77e8-4582-a7dd-4c75bf4142d1
msft-kb4018271-665889ee-a56a-4419-b8b9-1cdafb5a3312
msft-kb4018271-69f163b7-883a-485d-b619-923a0755f630
msft-kb4018271-7e224737-81c5-4c04-a994-7b4d7e0149cc
msft-kb4018271-7f0872af-8e3b-43fa-9fc0-dc1bc0c355bf
msft-kb4018271-8eb29486-0deb-4e53-8f2b-285bf4fa572a
msft-kb4018271-9a275ac7-f790-440d-a338-82a2c5f7185a
msft-kb4018271-9a70ddbf-abb3-43b1-a967-aa75b6f220bd
msft-kb4018271-a1e888ba-0d97-4c09-a4d1-3b0e37f1c027
msft-kb4018271-b2ab07b5-9772-47ae-af01-9908f62f3878
msft-kb4018271-b8d7147a-0628-44ac-9bd7-f03502930148
msft-kb4018271-c1712990-5efa-443a-ad6b-f9ff7d320c4d
msft-kb4018271-c37a095f-74ee-459a-b099-c51ab0cd7741
msft-kb4018271-d046cb70-a1e8-4c4a-9d0e-0189fe9b17ce
msft-kb4018271-dcdb7285-422f-49fd-8b02-7c857f8fbb65
msft-kb4018271-de1c2774-3cb6-4519-bfab-389a84034622
msft-kb4018271-e23c5f53-891d-4389-afd7-f2e8725c04cb
msft-kb4018271-e6fd0bc9-4fdb-4967-9825-cecec4c14fa0
msft-kb4018271-ebee7d44-6fcc-44ac-b831-408a65b37058

References

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Microsoft Windows: CVE-2017-0238: Microsoft Edge Memory Corruption Vulnerability

Microsoft Windows: CVE-2017-0238: Microsoft Edge Memory Corruption Vulnerability

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.