Multiple vulnerabilities in Microsoft Browsers

Описание

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges.

Below is a complete list of vulnerabilities:

1. A memory corruption vulnerability in Microsoft Edge can be exploited remotely via specially crafted website to execute arbitrary code.
2. A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
3. A remote code execution vulnerability in MSHTML Engine can be exploited remotely via specially crafted file to execute arbitrary code.
4. A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
5. An elevation of privilege vulnerability in Microsoft Edge can be exploited remotely via unspecified vector to gain privileges.
6. A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.

Первичный источник обнаружения

• CVE-2019-0565
  CVE-2019-0567
  CVE-2019-0541
  CVE-2019-0568
  CVE-2019-0566
  CVE-2019-0539
  

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Microsoft-Internet-Explorer
• Microsoft-Edge

Список CVE

• CVE-2019-0541
  critical
• CVE-2019-0565
  critical
• CVE-2019-0567
  critical
• CVE-2019-0568
  critical
• CVE-2019-0566
  high
• CVE-2019-0539
  critical

Список KB

• 4480978
• 4480962
• 4480966
• 4480116
• 4480961
• 4480973
• 4480963
• 4480970
• 4480975
• 4480965

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com