Multiple vulnerabilities in Microsoft Browsers

説明

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code.

Below is a complete list of vulnerabilities:

1. A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
2. A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
3. A remote code execution vulnerability in VBScript can be exploited remotely via specially crafted website to execute arbitrary code.
4. A memory corruption vulnerability in Scripting Engine can be exploited remotely to execute arbitrary code.
5. A remote code execution vulnerability in Windows VBScript Engine can be exploited remotely via specially crafted website to execute arbitrary code.

オリジナルアドバイザリー

• CVE-2020-0968

• CVE-2020-0969
• CVE-2020-0966
• CVE-2020-0970
• CVE-2020-0967
• CVE-2020-0895

エクスプロイテーション

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

関連製品

• Microsoft-Internet-Explorer
• Microsoft-Edge
• ChakraCore

CVEリスト

• CVE-2020-0968
  critical
• CVE-2020-0967
  critical
• CVE-2020-0895
  critical
• CVE-2020-0966
  critical
• CVE-2020-0969
  critical
• CVE-2020-0970
  critical

KBリスト

• 4549949
• 4550927
• 4550929
• 4550964
• 4550917
• 4549951
• 4550961
• 4550922
• 4550930
• 4550905

も参照してください

お住まいの地域に広がる脆弱性の統計をご覧ください statistics.securelist.com