An Analysis of Microsoft Edge Chakra NewScObjectNoCtor Array Type

CVE-2018-0838 is one of the ‘type confusion’ bugs in the Microsoft Edge Chakra Engine that was fixed by Microsoft three months ago. This bug causes memory corruption and can possibly be exploited to execute arbitrary code when a vulnerable system browses a malicious web page via Microsoft Edge.

ChakraCore: analysis of JavaScript-engine for Microsoft Edge

Эксплуатация Microsoft Edge от CVE до RCE на Windows 10 / Хабр

OverWatch Uncovers Ongoing NIGHT SPIDER Zloader Campaign

Эксплуатация Microsoft Edge от CVE до RCE на Windows 10 / Хабр

Exploit Development: Browser Exploitation on Windows - CVE-2019-0567, A Microsoft Edge Type Confusion Vulnerability (Part 2)

AttacKG: Constructing Technique Knowledge Graph from Cyber Threat Intelligence Reports

Microsoft Edge's JavaScript engine to go open-source - Microsoft Edge Blog

New Okrum Malware Used by Ke3chang Group to Target Diplomats

An Analysis of Microsoft Edge Chakra NewScObjectNoCtor Array Type Confusion (CVE-2018-0838)

Trend Micro Vision One: Tracking Conti Ransomware

Reports – TheHive Project

An Analysis of the Use-After-Free Bug in the Microsoft Edge Chakra Engine (CVE-2018-0946)

An Analysis of Microsoft Edge Chakra NewScObjectNoCtor Array Type Confusion (CVE-2018-0838)

CyRadar Cloud SOC for AWS - CyRadar

Threat Detection and Response