QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2018-0891

Back to search

CVE-2018-0891

Published: Mar 14, 2018

Modified: Sep 16, 2024

PUBLISHED

Description

ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allow information disclosure, due to how the scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0939.

VendorProductVersions

Microsoft Corporation

ChakraCore, Microsoft Edge, Internet Explorer

affected
Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016.

References

103309
vdb-entry
x_refsource_BID
44312
exploit
x_refsource_EXPLOIT-DB
1040507
vdb-entry
x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now