Microsoft ChakraCore Scripting Engine CVE-2018-8359 Information Disclosure Vulnerability

Bugtraq ID:	104990
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2018-8359
Remote:	Yes
Local:	No
Published:	Aug 14 2018 12:00AM
Updated:	Aug 14 2018 12:00AM
Credit:	Microsoft
Vulnerable:	Microsoft ChakraCore 0
Not Vulnerable:

Microsoft ChakraCore Scripting Engine CVE-2018-8359 Information Disclosure Vulnerability

Microsoft ChakraCore Scripting Engine is prone to an information disclosure vulnerability.

Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks.

Microsoft ChakraCore Scripting Engine CVE-2018-8359 Information Disclosure Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Microsoft ChakraCore Scripting Engine CVE-2018-8359 Information Disclosure Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Microsoft ChakraCore Scripting Engine CVE-2018-8359 Information Disclosure Vulnerability

References:

• Microsoft Edge - Homepage (Microsoft)
  
• Microsoft Homepage (Microsoft)
  
• CVE-2018-8359 | Scripting Engine Memory Corruption Vulnerability (Microsoft)