説明
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions.
Below is a complete list of vulnerabilities:
- A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code;
- An information disclosure vulnerability in Microsoft Edge based on Edge HTML can be exploited remotely via specially crafted content to obtain sensitive information;
- A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code;
- A security feature bypass vulnerability in Microsoft Browser can be exploited remotely via specially crafted to bypass security restrictions;
- A remote code execution vulnerability in VBScript can be exploited remotely via specially crafted website to execute arbitrary code.
オリジナルアドバイザリー
- CVE-2019-1299
- CVE-2019-1138
- CVE-2019-1237
- CVE-2019-1217
- CVE-2019-1221
- CVE-2019-1220
- CVE-2019-1236
- CVE-2019-1208
- CVE-2019-1298
エクスプロイテーション
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
関連製品
CVEリスト
- CVE-2019-1138 critical
- CVE-2019-1298 critical
- CVE-2019-1237 critical
- CVE-2019-1300 critical
- CVE-2019-1217 critical
- CVE-2019-1299 high
- CVE-2019-1221 critical
- CVE-2019-1220 warning
- CVE-2019-1236 critical
- CVE-2019-1208 critical
KBリスト
も参照してください
お住まいの地域に広がる脆弱性の統計をご覧ください statistics.securelist.com
この脆弱性についての記述に不正確な点がありますか? お知らせください!