Cloud Defense Logo

Products

Solutions

Company

CVE-2018-0835 : What You Need to Know

Learn about CVE-2018-0835, a critical vulnerability in Microsoft Edge and ChakraCore allowing remote code execution. Find out how to mitigate risks and apply security patches.

A critical vulnerability, known as the "Scripting Engine Memory Corruption Vulnerability," affects Microsoft Edge, ChakraCore, and various versions of Microsoft Windows.

Understanding CVE-2018-0835

This CVE involves a memory corruption issue in Microsoft Edge and ChakraCore, leading to potential remote code execution.

What is CVE-2018-0835?

The vulnerability allows attackers to execute remote code by exploiting how the scripting engine handles memory objects.

The Impact of CVE-2018-0835

This vulnerability poses a severe risk as it enables remote attackers to compromise affected systems and execute malicious code.

Technical Details of CVE-2018-0835

The technical aspects of this CVE include:

Vulnerability Description

        Type: Memory Corruption
        Risk: Critical

Affected Systems and Versions

        Products: Microsoft Edge, ChakraCore
        Versions: Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016

Exploitation Mechanism

        Attackers exploit memory management in the scripting engine to execute remote code.

Mitigation and Prevention

Taking immediate action and implementing long-term security practices are crucial to mitigate the risks associated with CVE-2018-0835.

Immediate Steps to Take

        Apply security patches provided by Microsoft promptly.
        Consider disabling scripting engines in browsers if not essential.

Long-Term Security Practices

        Regularly update software and systems to prevent vulnerabilities.
        Educate users on safe browsing habits and potential threats.

Patching and Updates

        Regularly check for security updates from Microsoft and apply them to all affected systems.

Popular CVEs

CVE Id

Published Date

Is your System Free of Underlying Vulnerabilities?
Find Out Now