cbcvebase.
CVE-2017-8731
published 2017-09-13

CVE-2017-8731: Microsoft Edge in Microsoft Windows 10 1607 and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the…

PriorityP265high7.5CVSS 3.0
AVNACHPRNUIRSUCHIHAH
EXPLOIT
EPSS
51.55%
98.8th percentile
Microsoft Edge in Microsoft Windows 10 1607 and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft Edge accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8734, CVE-2017-8751, and CVE-2017-11766.

Affected

8 ranges
VendorProductVersion rangeFixed in
microsoftoffice
microsoftoffice
microsoftoffice
microsoftoffice
microsoft_corporationmicrosoft_edge
msrcmicrosoft_edge_on_windows_10_version_1607_for_32-bit_systems
msrcmicrosoft_edge_on_windows_10_version_1607_for_x64-based_systems
msrcmicrosoft_edge_on_windows_server_2016

Detection & IOCsextracted from sources · hover to see the quote

urlhttps://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/42758.zip
versionMicrosoft Edge 38.14393.1066.0 (Microsoft EdgeHTML 14.14393)
  • Crash occurs at edgehtml!`TextInput::TextInputLogging::Instance' offset +0x1389aa with access violation (code c0000005) reading from address 0x00000000abcdbbbb — a recognizable magic/poison pointer value useful for crash triage signatures.
  • The crash RIP directly precedes a CFG-protected indirect call (call qword ptr [edgehtml!_guard_dispatch_icall_fptr]), indicating the corruption is positioned to hijack control flow — monitor for CFG violations in edgehtml.dll during partial-page-load scenarios.
  • Exploit requires a slow/custom HTTP server (server.py) to serve a partial HTML document to Edge, triggering DOM modifications before full page load — network-level detection should look for abnormally slow or chunked HTTP responses targeting Edge clients followed by execCommand JavaScript calls.
  • ·The PoC was tested specifically against Microsoft Edge 38.14393.1066.0 (EdgeHTML 14.14393); exploitability on other versions is not confirmed by the source.
  • ·Microsoft's advisory states the vulnerability has been publicly disclosed but not yet exploited in the wild at time of publication (Exploit Status: Publicly Disclosed:No; Exploited:No).

CVSS provenance

nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.07.6HIGHAV:N/AC:H/Au:N/C:C/I:C/A:C
vendor_msrc4.2MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.