Multiple vulnerabilities in Microsoft Browsers

Описание

Multiple vulnerabilities were found in Microsoft browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
2. A tampering vulnerability in Microsoft Browsers can be exploited remotely via specially crafted website to spoof user interface.
3. A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
4. An information disclosure vulnerability in Microsoft Edge can be exploited remotely via specially crafted content to obtain sensitive information.
5. An information disclosure vulnerability in Microsoft Scripting Engine can be exploited remotely via specially crafted content to obtain sensitive information.

Первичный источник обнаружения

• CVE-2019-0860
  CVE-2019-0829
  CVE-2019-0764
  CVE-2019-0752
  CVE-2019-0739
  CVE-2019-0862
  CVE-2019-0833
  CVE-2019-0806
  CVE-2019-0835
  CVE-2019-0861
  CVE-2019-0810
  CVE-2019-0812
  CVE-2019-0753
  

Эксплуатация

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Microsoft-Internet-Explorer
• Microsoft-Edge

Список CVE

• CVE-2019-0829
  critical
• CVE-2019-0806
  critical
• CVE-2019-0810
  critical
• CVE-2019-0812
  critical
• CVE-2019-0860
  critical
• CVE-2019-0739
  critical
• CVE-2019-0861
  critical
• CVE-2019-0764
  warning
• CVE-2019-0752
  critical
• CVE-2019-0862
  critical
• CVE-2019-0833
  warning
• CVE-2019-0835
  warning
• CVE-2019-0753
  critical

Список KB

• 4493441
• 4493474
• 4493464
• 4493509
• 4493470
• 4493475
• 4493472
• 4493451
• 4493446
• 4493435
• 4530684

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com