CVE-2016-7200

CVSS 8.8 HIGHEPSS 82.5%● KEVCWE-787

Vexday Risk Score

93Fix now

SSVC decision (CISA)

Act

Exploitation + impact → act immediately

CVSS 8.8EPSS 82.5%KEV simPoC públicaNuclei —Metasploit —Patch referenciado

Lifecycle

10 Nov 2016Published on NVD

18 Nov 2016Public PoC

28 Mar 2022Active exploitation (CISA KEV)

Recommendation: Patch as soon as possible — active exploitation confirmed.

In short

A flaw in Microsoft Edge's JavaScript engine allows attackers to run malicious code or crash your browser by visiting a specially crafted website. This happens because the engine doesn't properly manage memory, leaving it vulnerable to abuse.

Technical detail

Out-of-bounds write vulnerability (CWE-787) in the Chakra JavaScript engine allows remote code execution or denial of service through crafted JavaScript. Attack vector is network-based via malicious web content; no user interaction beyond visiting a compromised site is required. Impact includes arbitrary code execution with browser privileges and memory corruption.

Summary generated and translated by AI from the official description.

The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-7201, CVE-2016-7202, CVE-2016-7203, CVE-2016-7208, CVE-2016-7240, CVE-2016-7242, and CVE-2016-7243.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

n/a · n/a

public PoCs found — 6

githubgithub.com/theori-io/chakra-2016-11★ 140 cve_referencepacketstormsecurity.com/files/140382/Microsoft-Edge-chakra.dll-Information-Leak-Type-Confusion.htmlunverified cve_referencewww.exploit-db.com/exploits/40785/unverified cve_referencewww.exploit-db.com/exploits/40990/unverified exploitdbwww.exploit-db.com/exploits/40785unverified exploitdbwww.exploit-db.com/exploits/40990unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.com/files/140382/Microsoft-Edge-chakra.dll-Information-Leak-Type-Confusion.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-129 https://github.com/theori-io/chakra-2016-11 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-7200 https://www.exploit-db.com/exploits/40785/https://www.exploit-db.com/exploits/40990/http://www.securityfocus.com/bid/93968 http://www.securitytracker.com/id/1037245