KLA11681
Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. A memory corruption vulnerability in Scripting Engine can be exploited remotely to execute arbitrary code.
2. A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
3. An information disclosure vulnerability in Scripting Engine can be exploited remotely to obtain sensitive information.
4. A memory corruption vulnerability in Microsoft Edge can be exploited remotely via specially crafted website to execute arbitrary code.
5. A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
6. A memory corruption vulnerability in Scripting Engine can be exploited remotely to execute arbitrary code.
7. A memory corruption vulnerability in Internet Explorer can be exploited remotely via specially crafted website to execute arbitrary code.
8. A remote code execution vulnerability in VBScript can be exploited remotely via specially crafted website to execute arbitrary code.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Internet Explorer 11
Internet Explorer 9
Microsoft Edge (EdgeHTML-based)
ChakraCore

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

4538461
4541510
4540689
4541509
4540681
4540693
4540673
4540670
4540671
4540688