The proof-of-concept code is 71 lines long and results in an out-of-bounds (OOB) memory read leak error in the chakra engine. The exploit code exploits the Chakra Engine memory error in the Microsoft Edge web browser for remote code execution on unpatched machines.
I published the PoC for CVE-2018-8629: a JIT bug in Chakra fixed in the latest security updates. It resulted in an (almost) unbounded relative R/W https://t.co/47TIYtVB8f
— Bruno Keith (@bkth_) 27. Dezember 2018
Security researcher Bruno Keith from the phoenhex team has published the exploit code on Github and made it public on Twitter in the tweet above. He could, if I interpret it correctly, take advantage of a bug mentioned just before Christmas. The bug in the edge browser’s chakra engine probably has a critical impact on most of the operating systems it affects. The only systems with a “moderate” severity are the Windows Server Editions 2019 and 2016.
In December 2018 Microsoft addressed the Chakra Scripting Engine Memory Corruption Vulnerability in CVE-2018-8629. At the same time, updates for Windows 10 and the affected Windows Server variants are available. Anyone working with these operating systems should therefore install the updates offered under CVE-2018-8629 immediately. Some additional information can be found at Bleeping Computer, which has addressed the topic here.
Cookies helps to fund this blog: Cookie settings