Multiple vulnerabilities in Microsoft Browser

Описание

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. An information disclosure vulnerability in Skype for Business via Microsoft Edge (EdgeHTML-based) can be exploited remotely via specially crafted to obtain sensitive information.
2. An information disclosure vulnerability in Skype for Business via Internet Explorer can be exploited remotely via specially crafted to obtain sensitive information.
3. An information disclosure vulnerability in Microsoft Edge PDF can be exploited remotely via specially crafted to obtain sensitive information.
4. A remote code execution vulnerability in VBScript can be exploited remotely via specially crafted website to execute arbitrary code.

Первичный источник обнаружения

• CVE-2020-1462
  CVE-2020-1432
  CVE-2020-1433
  CVE-2020-1403
  

Эксплуатация

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Microsoft-Internet-Explorer
• Microsoft-Edge

Список CVE

• CVE-2020-1462
  warning
• CVE-2020-1432
  warning
• CVE-2020-1433
  warning
• CVE-2020-1403
  critical

Список KB

• 4565541
• 4565524
• 4558998
• 4565489
• 4565479
• 4565483
• 4565508
• 4565511
• 4565513
• 4565537
• 4565503

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com