Oval Definition:oval:org.cisecurity:def:872
Revision Date:2016-07-29Version:32
Title:Scripting Engine Memory Corruption Vulnerability - CVE-2016-3199 (MS16-068)
Description:The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3214.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2016-3199
Platform(s):Microsoft Windows 10
Product(s):Microsoft Edge
Definition Synopsis
  • Microsoft Edge is installed
  • AND Windows OS is installed + file version
  • Microsoft Windows 10 is installed + file version
  • Microsoft Windows 10 is installed
  • Microsoft Windows 10 (32-bit) is installed
  • OR Microsoft Windows 10 (64-bit) is installed
  • AND Check if chakra.dll version is less than 11.0.10240.16942
  • OR Microsoft Windows 10 Version 1511 is installed + file version
  • Microsoft Windows 10 Version 1511 is installed
  • Microsoft Windows 10 Version 1511 (32-bit) is installed
  • OR Microsoft Windows 10 Version 1511 (64-bit) is installed
  • AND Check if chakra.dll version is less than 11.0.10586.420
    • BACK