Описание
Multiple vulnerabilities were found in Microsoft browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, obtain sensitive information.
Below is a complete list of vulnerabilities:
- A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
- A tampering vulnerability in Microsoft Browsers can be exploited remotely via specially crafted website to spoof user interface.
- A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
- An information disclosure vulnerability in Microsoft Edge can be exploited remotely via specially crafted content to obtain sensitive information.
- An information disclosure vulnerability in Microsoft Scripting Engine can be exploited remotely via specially crafted content to obtain sensitive information.
Первичный источник обнаружения
- CVE-2019-0860
CVE-2019-0829
CVE-2019-0764
CVE-2019-0752
CVE-2019-0739
CVE-2019-0862
CVE-2019-0833
CVE-2019-0806
CVE-2019-0835
CVE-2019-0861
CVE-2019-0810
CVE-2019-0812
CVE-2019-0753
Эксплуатация
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Связанные продукты
Список CVE
- CVE-2019-0829 critical
- CVE-2019-0806 critical
- CVE-2019-0810 critical
- CVE-2019-0812 critical
- CVE-2019-0860 critical
- CVE-2019-0739 critical
- CVE-2019-0861 critical
- CVE-2019-0764 high
- CVE-2019-0752 critical
- CVE-2019-0862 critical
- CVE-2019-0833 high
- CVE-2019-0835 high
- CVE-2019-0753 critical
Список KB
Смотрите также
Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com
Нашли неточность в описании этой уязвимости? Дайте нам знать!