virus logo FortiClient Vulnerability

Microsoft Edge CVE-2017-8662 Information Disclosure Vulnerability

description-logoDescription

An information disclosure vulnerability for Microsoft Edge exists as a result of how strings are validated in specific scenarios, which can allow an attacker to read sensitive data from memory and thereby potentially bypass Address Space Layout Randomization (ASLR). By itself, this vulnerability does not allow arbitrary code execution. However, an attacker could use this vulnerability in conjunction with another vulnerability, such as a remote code execution vulnerability, to run arbitrary code on a target system.

affected-products-logoAffected Applications

Microsoft Edge

CVE References

CVE-2017-8662

Other References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2017-8662
ID 36548
Created Jul 11, 2018
Description
Updated		 Dec 19, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Microsoft
Patch auto
Application Microsoft Edge