Popis
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions.
Below is a complete list of vulnerabilities:
- A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code;
- An information disclosure vulnerability in Microsoft Edge based on Edge HTML can be exploited remotely via specially crafted content to obtain sensitive information;
- A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code;
- A security feature bypass vulnerability in Microsoft Browser can be exploited remotely via specially crafted to bypass security restrictions;
- A remote code execution vulnerability in VBScript can be exploited remotely via specially crafted website to execute arbitrary code.
Oficiální doporučení
- CVE-2019-1299
- CVE-2019-1138
- CVE-2019-1237
- CVE-2019-1217
- CVE-2019-1221
- CVE-2019-1220
- CVE-2019-1236
- CVE-2019-1208
- CVE-2019-1298
Vykořisťování
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Související produkty
seznam CVE
- CVE-2019-1138 critical
- CVE-2019-1298 critical
- CVE-2019-1237 critical
- CVE-2019-1300 critical
- CVE-2019-1217 critical
- CVE-2019-1299 high
- CVE-2019-1221 critical
- CVE-2019-1220 warning
- CVE-2019-1236 critical
- CVE-2019-1208 critical
seznam KB
Zobrazit více
Zjistěte statistiky zranitelností šířících se ve vaší oblasti statistics.securelist.com
Našli jste v popisu této chyby zabezpečení nepřesnost? Dej nám vědět!