Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
attackerkbAttackerKBAKB:2F48FB8A-EF4C-468F-9F4F-8BB9BB5FEC97
HistoryMay 11, 2021 - 12:00 a.m.

CVE-2021-26419

2021-05-1100:00:00
attackerkb.com
133

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.928 High

EPSS

Percentile

98.7%

JSON

Scripting Engine Memory Corruption Vulnerability

Recent assessments:

architect00 at May 14, 2021 10:33am UTC reported:

Details

The vulnerability affects Internet Explorer 11 on all Windows Versions. It is located in the jscript9.dll library, which is used to execute javascript.

Possible attack vectors:

  • website content

  • activeX components in office documents

Google Project Zero released a PoC on 13.05.2021, which triggers the vulnerability and causes a crash. At the time of writing I could not find any weaponized exploit.

The CVSS rating of the vulnerability differs between Windows desktop versions and server versions. In server versions the CVSS Privileges Required is set to High. Desktop versions are rated with CVSS None. The reason could be, that IE enhanced protection mode is disabled on Windows desktop versions and enabled on server versions by default.

Rating explanation

My rating of the exploitability score was affected by the availability of the PoC and the Microsoft exploitability rating. In year 2020, Operation PowerFall was using a similar vulnerability (CVE-2020-1380) in IE. I expect to see exploits for CVE-2021-26419 in a similar context.

Attackers might gain direct control over the host after exploitation without a sandbox escape. IE 11 does have a enhanced protected mode (EPM), which runs IE in an AppContainer and acts as a sandbox. EPM was introduced with Windows 8 and is disabled by default on Windows desktop versions.

Sources

Assessed Attacker Value: 3
Assessed Attacker Value: 3Assessed Attacker Value: 3

Related

checkpoint_advisories 2
packetstorm 1
cve 2
mscve 2
mskb 22
zdt 1
prion 2
nessus 20
kaspersky 3
trendmicroblog 1
cisa_kev 1
threatpost 4
cisa 1
attackerkb 2
thn 5
securelist 6
googleprojectzero 1
krebs 2
malwarebytes 1
openvas 18
avleonov 2
qualysblog 3
rapid7blog 1
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2021-26419)
2021-05-11 00:00:00
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2020-1380)
2020-08-11 00:00:00
packetstorm
packetstorm
Internet Explorer jscript9.dll Memory Corruption
2021-05-13 00:00:00
cve
cve
CVE-2021-26419
2021-05-11 19:15:00
CVE-2020-1380
2020-08-17 19:15:00
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2021-05-11 07:00:00
Scripting Engine Memory Corruption Vulnerability
2020-08-11 07:00:00
mskb
mskb
KB5003165: Cumulative security update for Internet Explorer: May 11, 2021
2021-05-11 07:00:00
Cumulative security update for Internet Explorer: August 11, 2020
2020-08-11 07:00:00
May 11, 2021—KB5003210 (Monthly Rollup)
2021-05-11 07:00:00
zdt
zdt
Microsoft Internet Explorer jscript9.dll Memory Corruption Exploit
2021-05-13 00:00:00
prion
prion
Memory corruption
2021-05-11 19:15:00
Remote code execution
2020-08-17 19:15:00
nessus
nessus
Security Updates for Internet Explorer (May 2021)
2021-05-11 00:00:00
Security Updates for Internet Explorer (August 2020)
2020-08-11 00:00:00
KB5003210: Windows Server 2008 Security Update (May 2021)
2021-05-11 00:00:00
kaspersky
kaspersky
KLA12171 ACE vulnerability in Microsoft Browser
2021-05-11 00:00:00
KLA11935 Multiple vulnerabilities in Microsoft Browsers
2020-08-11 00:00:00
KLA12167 Multiple vulnerabilities in Microsoft Products (ESU)
2021-05-11 00:00:00
trendmicroblog
trendmicroblog
This Week in Security News: Trend Micro and Snyk Partner to Fight Open Source Security Flaws and Ransomware Has Gone Corporate
2020-08-28 13:15:25
cisa_kev
cisa_kev
Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability
2021-11-03 00:00:00
threatpost
threatpost
InkySquid State Actor Exploiting Known IE Bugs
2021-08-19 20:19:04
Microsoft Out-of-Band Security Update Fixes Windows Remote Access Flaws
2020-08-20 15:39:38
Two 0-Days Under Active Attack, Among 120 Bugs Patched by Microsoft
2020-08-11 21:12:29
cisa
cisa
Microsoft Addresses RCE and Spoofing Vulnerabilities Under Active Exploitation
2020-08-11 00:00:00
attackerkb
attackerkb
CVE-2021-26411
2021-03-11 00:00:00
CVE-2020-1380
2020-08-17 00:00:00
thn
thn
NK Hackers Deploy Browser Exploits on South Korean Sites to Spread Malware
2021-08-18 08:33:00
North Korea Hackers Using New "Dolphin" Backdoor to Spy on South Korean Targets
2022-11-30 18:30:00
Google Warns of Internet Explorer Zero-Day Vulnerability Exploited by ScarCruft Hackers
2022-12-08 07:59:00
securelist
securelist
IT threat evolution Q3 2020
2020-11-20 10:00:58
APT trends report Q3 2020
2020-11-03 10:00:37
Internet Explorer and Windows zero-day exploits used in Operation PowerFall
2020-08-12 07:00:28
googleprojectzero
googleprojectzero
Fuzzing Closed-Source JavaScript Engines with Coverage Feedback
2021-09-14 00:00:00
krebs
krebs
Microsoft Patch Tuesday, May 2021 Edition
2021-05-11 20:28:19
Microsoft Patch Tuesday, August 2020 Edition
2020-08-11 20:55:02
malwarebytes
malwarebytes
Get patching! Wormable Windows flaw headlines Patch Tuesday
2021-05-12 12:46:09
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5003233)
2021-05-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5003209)
2021-05-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5003197)
2021-05-12 00:00:00
avleonov
avleonov
Vulristics: Microsoft Patch Tuesdays Q2 2021
2021-07-10 00:14:59
Microsoft Patch Tuesday August 2020: vulnerabilities with Detected Exploitation, useful for phishing and others
2020-08-30 22:13:56
qualysblog
qualysblog
August 2020 Patch Tuesday – 120 Vulnerabilities, 17 Critical, Media Foundation, Windows Codecs, Workstation, Adobe
2020-08-11 19:02:30
Microsoft & Adobe Patch Tuesday (May 2021) – Qualys covers 85 Vulnerabilities, 26 Critical
2021-05-11 21:53:37
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00
rapid7blog
rapid7blog
Patch Tuesday - May 2021
2021-05-11 23:44:00

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.928 High

EPSS

Percentile

98.7%

JSON
Related for AKB:2F48FB8A-EF4C-468F-9F4F-8BB9BB5FEC97
checkpoint_advisories2packetstorm1cve2mscve2mskb22zdt1prion2nessus20kaspersky3trendmicroblog1cisa_kev1threatpost4cisa1attackerkb2thn5securelist6googleprojectzero1krebs2malwarebytes1openvas18avleonov2qualysblog3rapid7blog1