Following our successful exploitation of CVE-2018-3048 on the ChakraCore engine, myself and @f00fc7c800 have decided to write a blogpost about it. You can read about our journey into building the proof of concept exploit here

マイクロソフトの ChakraCore におけるリソースの枯渇に関する脆弱性

@yagiznizipli I'm working on a TS SDK for Skyrim game, want to migrate it to NodeJS (uses Chakracore now). That'd be nice if there were support/examples for embedder API with features such as permissions and native modules.

#NGK2024S へ〜 ECMAScript ランタイムの、仕様の実装度をあらわすテストスイートがあるんだ。Hermes はまだまだ低いが、Microsoft が捨てた ChakraCore よりは高くなっている.

Exploit Development: Browser Exploitation on Windows - CVE-2019-0567, A Microsoft Edge Type Confusion Vulnerability. - - - #modern #browser #exploitation #windows #chakracore #javascript #CVE #Analysis.

JS Engine Switcher 3.27.3 released: Added support for new versions of the ChakraCore, Jint, Jurassic and YantraJS

#CyberSecurity #Security #CERT #CVE #Nist #Analysed #breach #vulnerability : CVE-2019-0810 (chakracore, edge)

Recently released “TypeScript Origins” documentary brought to mind the technical excellence of the Chakra JS engine. Unfortunately, this wonderful engine is gradually fading into the past, and its further fate depends entirely on a small community:.

re-taro starred chakra-core/ChakraCore on Github

JS Engine Switcher 3.26.0 released: Added support for the ChakraCore version of April 21, 2024

Today was productive. I got far enough with my game engine that I have a working demo ported over with two drawcalls being changed . Next thing I want to do is swap out the JS engine for something faster. I'm looking at QuickJS, Chakracore or SpiderMonkey.

New post from (CVE-2018-8473 | Microsoft Edge/ChakraCore memory corruption (Nessus ID 118006 / ID 91475)) has been published on

Lightweight Architecture: Utilizes platform-native JavaScript engines (e.g., JavaScriptCore on Apple platforms, ChakraCore on Windows) instead of Node.js's V8 engine.

New post from (CVE-2018-8503 | Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption (Nessus ID 117999 / ID 91475)) has been published on

JS Engine Switcher 3.23.7 released: In ChakraCore module fixed a error that occurred in the `ReflectionHelpers.IsAllowedProperty` method when running on .NET Core 1.0

New post from (CVE-2018-8557 | Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption (Nessus ID 118916 / ID 91479)) has been published on

New post from (CVE-2018-8551 | Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption (Nessus ID 118912 / ID 91479)) has been published on

New post from (CVE-2018-8452 | Microsoft Edge/ChakraCore Scripting Engine information disclosure (Nessus ID 117414 / ID 100343)) has been published on

I made it for extending bedrock scripting API and supported node.js later. と書いてあったけど、V8, JSC, SpiderMonkeyのような最新のECMAScriptをほぼカバーしているエンジンがありながら、なぜ機能の追加もほぼないChakraCoreを使用したのかは書いてない.