Descrição
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions.
Below is a complete list of vulnerabilities:
- A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code;
- An information disclosure vulnerability in Microsoft Edge based on Edge HTML can be exploited remotely via specially crafted content to obtain sensitive information;
- A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code;
- A security feature bypass vulnerability in Microsoft Browser can be exploited remotely via specially crafted to bypass security restrictions;
- A remote code execution vulnerability in VBScript can be exploited remotely via specially crafted website to execute arbitrary code.
Comunicados originais
- CVE-2019-1299
- CVE-2019-1138
- CVE-2019-1237
- CVE-2019-1217
- CVE-2019-1221
- CVE-2019-1220
- CVE-2019-1236
- CVE-2019-1208
- CVE-2019-1298
Exploração
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Produtos relacionados
Lista de CVE
- CVE-2019-1138 critical
- CVE-2019-1298 critical
- CVE-2019-1237 critical
- CVE-2019-1300 critical
- CVE-2019-1217 critical
- CVE-2019-1299 high
- CVE-2019-1221 critical
- CVE-2019-1220 warning
- CVE-2019-1236 critical
- CVE-2019-1208 critical
Lista de KB
Saiba mais
Descubra as estatísticas das vulnerabilidades que se espalham em sua região statistics.securelist.com
Encontrou uma imprecisão na descrição desta vulnerabilidade? Avise-nos!