Description
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions.
Below is a complete list of vulnerabilities:
- A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code;
- An information disclosure vulnerability in Microsoft Edge based on Edge HTML can be exploited remotely via specially crafted content to obtain sensitive information;
- A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code;
- A security feature bypass vulnerability in Microsoft Browser can be exploited remotely via specially crafted to bypass security restrictions;
- A remote code execution vulnerability in VBScript can be exploited remotely via specially crafted website to execute arbitrary code.
Fiches de renseignement originales
- CVE-2019-1299
- CVE-2019-1138
- CVE-2019-1237
- CVE-2019-1217
- CVE-2019-1221
- CVE-2019-1220
- CVE-2019-1236
- CVE-2019-1208
- CVE-2019-1298
Exploitation
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Produits associés
Liste CVE
- CVE-2019-1138 critical
- CVE-2019-1298 critical
- CVE-2019-1237 critical
- CVE-2019-1300 critical
- CVE-2019-1217 critical
- CVE-2019-1299 high
- CVE-2019-1221 critical
- CVE-2019-1220 warning
- CVE-2019-1236 critical
- CVE-2019-1208 critical
Liste KB
En savoir plus
Découvrez les statistiques de la propagation des vulnérabilités dans votre région statistics.securelist.com
Vous avez trouvé une inexactitude dans la description de cette vulnérabilité ? Faites-le nous savoir !