CVE-2017-11767

Description

ChakraCore vulnerable to privilege escalation

Predictions

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

References

• http://www.securityfocus.com/bid/100838
• http://www.securitytracker.com/id/1039369
• https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11767
• https://nvd.nist.gov/vuln/detail/CVE-2017-11767
• https://github.com/chakra-core/ChakraCore/pull/3727
• https://github.com/chakra-core/ChakraCore/pull/3727/commits/b3e3959d14814f42ee2197c504c322bcbe12347d
• https://github.com/chakra-core/ChakraCore/commit/b3e3959d14814f42ee2197c504c322bcbe12347d
• https://github.com/chakra-core/ChakraCore
• https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2017-11767
• https://web.archive.org/web/20210124103810/http://www.securityfocus.com/bid/100838
• https://web.archive.org/web/20211127230635/http://www.securitytracker.com/id/1039369

CWEs

CWE-119