378 matches found
EUVD-2021-21280
Malware in sbrugna...
Newsletter < 7.4.5 - Reflected Cross-Site Scripting
The plugin does not sanitize and escape the $SERVER'REQUESTURI' before echoing it back in admin pages. Although this uses addslashes, and most modern browsers automatically URLEncode requests, this is still vulnerable to Reflected XSS in older browsers such as Internet Explorer 9 or below. PoC...
ChakraCore RCE Vulnerability
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from...
Availability of Windows Internet Explorer 9
Discusses the availability of Windows Internet Explorer 9.INTRODUCTIONWindows Internet Explorer 9 is now available. Internet Explorer 9 is the latest version of the familiar web browser that you are most comfortable using. It helps you obtain everything that you want from the web faster, easier,...
Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (ADV200001)
This host is missing a critical security update according to Microsoft advisory ADV200001. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later...
KLA11619 ACE vulnerability in Microsoft Internet Explorer
A remote code execution vulnerability was found in Microsoft Internet Explorer. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2019-1485 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More...
Microsoft Internet Explorer Scripting Engine CVE-2019-1429 Remote Memory Corruption Vulnerability
Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Internet Explorer 9, 10, and 11 are...
KLA11873 ACE vulnerability in Microsoft Products (ESU)
A memory corruption vulnerability was found in Microsoft Products Extended Support Update. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2019-1367 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit...
Microsoft Internet Explorer and Edge CVE-2019-1081 Information Disclosure Vulnerability
Description Microsoft Internet Explorer and Edge are prone to an information disclosure vulnerability. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Edge Microsoft Internet Explorer 10 Microsoft Internet...
Microsoft Windows VBScript Engine CVE-2019-0666 Remote Memory Corruption Vulnerability
Description Microsoft Windows VBScript Engine is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft...
CVE-2019-0541
A remote code execution vulnerability exists in the way that the MSHTML engine inproperly validates input, aka "MSHTML Engine Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Internet Explorer 9, Internet Explorer 11, Microsoft Excel Viewer,...
CVE-2019-0541
A remote code execution vulnerability exists in the way that the MSHTML engine inproperly validates input, aka “MSHTML Engine Remote Code Execution Vulnerability.” This affects Microsoft Office, Microsoft Office Word Viewer, Internet Explorer 9, Internet Explorer 11, Microsoft Excel Viewer,...
Remote code execution
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from...
CVE-2018-8619
A remote code execution vulnerability exists when the Internet Explorer VBScript execution policy does not properly restrict VBScript under specific conditions, aka "Internet Explorer Remote Code Execution Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 1...
CVE-2018-8643
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10...
CVE-2018-8625
CVE-2018-8625 is an remote-code-execution vulnerability in the Windows VBScript engine, triggered by how VBScript objects are handled in memory. It affects Internet Explorer 9, 10, and 11. Public references in the connected data indicate active exploitation, with a documented exploit listed in Ex...
Remote code execution
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from...
CVE-2018-8371
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from...
CVE-2018-0949
A security feature bypass vulnerability exists when Microsoft Internet Explorer improperly handles requests involving UNC resources, aka "Internet Explorer Security Feature Bypass Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10...
Remote code execution
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from...