CVE-2017-8656: Scripting Engine Memory Corruption Vulnerability CVE ID: CVE-2017-8656 Release Date: Aug 8, 2017 Severity: Security Vulnerability Executive Summary A remote code execution vulnerability exists in the way that Microsoft browser JavaScript engines render content when handling objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. Attack Vector: An attacker could host a specially crafted website or use an ActiveX control in an application or Microsoft Office document to exploit the vulnerability. Impact: Successful exploitation could result in the attacker gaining the same user rights as the current user, potentially leading to full control of the system. Exploitability