Oval Definition:oval:org.cisecurity:def:817
Revision Date:2016-07-15Version:30
Title:Scripting Engine Memory Corruption Vulnerability - CVE-2016-0186 (MS16-052)
Description:The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0191 and CVE-2016-0193.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2016-0186
Platform(s):Microsoft Windows 10
Product(s):Microsoft Edge
Definition Synopsis
  • Microsoft Edge is installed
  • AND Windows OS is installed + file version
  • Microsoft Windows 10 is installed + file version
  • Microsoft Windows 10 is installed
  • Microsoft Windows 10 (32-bit) is installed
  • OR Microsoft Windows 10 (64-bit) is installed
  • AND Check if the version of Chakra.dll is less than 11.0.10240.16841
  • OR Microsoft Windows 10 Version 1511 is installed + file version
  • Microsoft Windows 10 Version 1511 is installed
  • Microsoft Windows 10 Version 1511 (32-bit) is installed
  • OR Microsoft Windows 10 Version 1511 (64-bit) is installed
  • AND Check if the version of Chakra.dll is less than 11.0.10586.306
    • BACK