Exploit for Out-of-bounds Write in Microsoft

CVE-2016-0189 Proof-of-Concept exploit for CVE-2016-0189 VBSc...

GHSA-2FVV-QXRQ-7JQ6 apollo-server-core vulnerable to URL-based XSS attack affecting IE11 on default landing page

Impact The default landing page contained HTML to display a sample curl command which is made visible if the full landing page bundle could not be fetched from Apollo's CDN. The server's URL is directly interpolated into this command inside the browser from window.location.href. On some older...

June 29, 2021—KB5004760 (OS Builds 19041.1082, 19042.1082, and 19043.1082) Out-of-band

June 29, 2021—KB5004760 OS Builds 19041.1082, 19042.1082, and 19043.1082 Out-of-band 6/21/21 IMPORTANT This release includes the Flash Removal Package. Taking this update will remove Adobe Flash from the machine. For more information, see the Update on Adobe Flash Player End of Support. 4/13/21...

Microsoft Internet Explorer 资源管理错误漏洞

Microsoft Internet Explorer IE is a Web browser that comes with the Windows operating system from Microsoft Corporation USA. A resource management error vulnerability exists in Internet Explorer. The following products and versions are affected: Internet Explorer 11,Internet Explorer 11,Internet...

VulnCheck KEV: CVE-2018-8389

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from...

Microsoft Internet Explorer VBScript Engine Buffer Overflow Vulnerability (CNVD-2019-39010)

Microsoft Internet Explorer IE is a Web browser that comes with the Windows operating system from Microsoft Corporation.VBScript Engine is one of the VBScript scripting language engines. A buffer overflow vulnerability exists in the way the VBScript Engine handles memory objects in Microsoft IE 9...

Microsoft Internet Explorer Remote Code Execution Vulnerability (CNVD-2019-17527)

Microsoft Internet Explorer IE is a Web browser that comes with the Windows operating system from the American company Microsoft. A remote code execution vulnerability exists in the way the scripting engine handles memory objects in Microsoft IE 10 and 11. A remote attacker could exploit this...

Memory Corruption Vulnerability in IE11

Microsoft is an American multinational technology company and a world leader in PC Personal Computer software development. A memory corruption vulnerability exists in IE11, which can be exploited by attackers to cause a denial of service or possibly execute code...

Microsoft Edge and Internet Explorer Remote Memory Corruption Vulnerability (CNVD-2019-07329)

Microsoft Edge and Microsoft Internet Explorer IE are both products of Microsoft Corporation.Microsoft Edge is a web browser that comes with Windows 10 and later.Microsoft Internet Explorer is a web browser that comes with Windows operating systems. Microsoft Edge is a web browser that comes with...

CVE-2018-8625

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10...

CVE-2018-8631

A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10...

CVE-2018-8625

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10...

CVE-2018-8491

A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption Vulnerability." This affects Internet Explorer 11. This CVE ID is unique from CVE-2018-8460...

CVE-2018-8460

A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption Vulnerability." This affects Internet Explorer 11. This CVE ID is unique from CVE-2018-8491...

March 8, 2016 — KB3140745 (OS Build 10240.16725)

March 8, 2016 — KB3140745 OS Build 10240.16725 This update includes quality improvements and security fixes. No new operating system features are being introduced in this update. Key changes include: Improved support for apps, smart card logon, dual Ethernet cards, and Appraiser. Improved...

September 13, 2016 — KB3185614 (OS Build 10586.589)

September 13, 2016 — KB3185614 OS Build 10586.589 This update includes quality improvements and security fixes. No new operating system features are being introduced in this update. Key changes include: Improved reliability of Internet Explorer 11, USB, and the .NET framework. Addressed issue wit...

March 22, 2017—KB4016635 (OS Build 14393.970)

March 22, 2017—KB4016635 OS Build 14393.970 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed a known issue with KB4013429 that caused form display issues with CRM 2011 on Internet...

CVE-2018-8461

A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption Vulnerability." This affects Internet Explorer 11. This CVE ID is unique from CVE-2018-8447...

CVE-2018-8447

A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-8461...

CVE-2018-8457

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 11, Microsoft Edge, Internet Explorer 10. This CVE ID is unique from CVE-2018-8354,...