cbcvebase.
CVE-2016-0191
published 2016-05-11

CVE-2016-0191: The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted…

PriorityP274high7.5CVSS 3.0
AVNACHPRNUIRSUCHIHAH
ITWVulnCheck KEV
Exploited in the wild
EPSS
28.26%
97.9th percentile
The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0186 and CVE-2016-0193.

Affected

4 ranges
VendorProductVersion rangeFixed in
msrcmicrosoft_edge_on_windows_10_for_32-bit_systems
msrcmicrosoft_edge_on_windows_10_for_x64-based_systems
msrcmicrosoft_edge_on_windows_10_version_1511_for_32-bit_systems
msrcmicrosoft_edge_on_windows_10_version_1511_for_x64-based_systems

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability is triggered via a specially crafted website targeting the scripting engine's handling of objects in memory in Microsoft browsers (Edge); monitor for suspicious web-based delivery through Microsoft browser rendering engine.
  • Exploitation vector also includes ActiveX controls marked 'safe for initialization' embedded in Office documents or applications hosting the browser rendering engine; monitor for Office documents spawning browser rendering engine processes.
  • Exploitation can occur via compromised websites or sites hosting user-provided content/advertisements containing specially crafted content; monitor Edge network traffic for anomalous script execution patterns.
  • CVE-2016-0191 is an uninitialized stack variable vulnerability in Microsoft Edge's scripting engine, demonstrated at Pwn2Own 2016; detection tooling should focus on uninitialized memory reads in the Edge/Chakra scripting engine process.
  • ·The MSRC advisory references two separate KB update packages for remediation; patching applies to Microsoft Edge on affected Windows releases.
  • ·CVE-2016-0191 is distinct from CVE-2016-0186 and CVE-2016-0193, which are separate Scripting Engine Memory Corruption vulnerabilities in the same Chakra engine; ensure detection rules are scoped correctly to avoid conflation.
  • ·Exploit status at time of advisory: publicly disclosed=No, exploited=No, but rated 'Exploitation More Likely' for the latest software release; prioritize patching accordingly.

CVSS provenance

nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.07.6HIGHAV:N/AC:H/Au:N/C:C/I:C/A:C
ghsa7.5HIGH
osv7.5HIGH
vulncheck7.5HIGH
vendor_msrc7.5CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.