Kaspersky ID:
KLA11749
Дата обнаружения:
14/04/2020
Обновлено:
22/01/2024

Описание

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
  2. A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
  3. A remote code execution vulnerability in VBScript can be exploited remotely via specially crafted website to execute arbitrary code.
  4. A memory corruption vulnerability in Scripting Engine can be exploited remotely to execute arbitrary code.
  5. A remote code execution vulnerability in Windows VBScript Engine can be exploited remotely via specially crafted website to execute arbitrary code.

Первичный источник обнаружения

Эксплуатация

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

Список CVE

  • CVE-2020-0968
    critical
  • CVE-2020-0967
    critical
  • CVE-2020-0895
    critical
  • CVE-2020-0966
    critical
  • CVE-2020-0969
    critical
  • CVE-2020-0970
    critical

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!
Kaspersky IT Security Calculator:
Оцените ваш профиль кибербезопасности
Узнать больше
Встречай новый Kaspersky!
Каждая минута твоей онлайн-жизни заслуживает топовой защиты.
Узнать больше
Confirm changes?
Your message has been sent successfully.