KLA11247Multiple vulnerabilities in Microsoft Browsers

2018-05-08T00:00:00
ID KLA11247
Type kaspersky
Reporter Kaspersky Lab
Modified 2020-07-22T00:00:00

Description

Detect date:

05/08/2018

Severity:

Critical

Description:

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions.

Affected products:

Internet Explorer 11
Microsoft Edge (EdgeHTML-based)
Internet Explorer 9
Internet Explorer 10
ChakraCore

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2018-0943
CVE-2018-0945
CVE-2018-0946
CVE-2018-0951
CVE-2018-0953
CVE-2018-0954
CVE-2018-1021
CVE-2018-8123
CVE-2018-1022
CVE-2018-8130
CVE-2018-8178
CVE-2018-8128
CVE-2018-8133
CVE-2018-8114
CVE-2018-0955
CVE-2018-8139
CVE-2018-1025
CVE-2018-8112
CVE-2018-8145
CVE-2018-8126
CVE-2018-8137
CVE-2018-8122
CVE-2018-8179
CVE-2018-8177

Impacts:

ACE

Related products:

Microsoft Internet Explorer

CVE-IDS:

CVE-2018-09430.0Unknown
CVE-2018-09450.0Unknown
CVE-2018-09460.0Unknown
CVE-2018-09510.0Unknown
CVE-2018-09530.0Unknown
CVE-2018-09540.0Unknown
CVE-2018-10210.0Unknown
CVE-2018-81230.0Unknown
CVE-2018-10220.0Unknown
CVE-2018-81300.0Unknown
CVE-2018-81780.0Unknown
CVE-2018-81280.0Unknown
CVE-2018-81330.0Unknown
CVE-2018-81140.0Unknown
CVE-2018-09550.0Unknown
CVE-2018-81390.0Unknown
CVE-2018-10250.0Unknown
CVE-2018-81120.0Unknown
CVE-2018-81450.0Unknown
CVE-2018-81260.0Unknown
CVE-2018-81370.0Unknown
CVE-2018-81220.0Unknown
CVE-2018-81790.0Unknown
CVE-2018-81770.0Unknown

Microsoft official advisories:

KB list:

4103723
4103716
4103731
4103721
4103730
4103718
4103727
4103725
4103768

Exploitation:

The following public exploits exists for this vulnerability: