2820 matches found
April 11, 2017—KB4015548 (Security-only update)
April 11, 2017—KB4015548 Security-only update Improvements and fixes This security update resolves security vulnerabilities in Scripting Engine, Hyper-V, Win32K, Adobe Type Manager Font Driver, Microsoft Outlook, Graphics component, Lightweight Directory Access Protocol and Windows OLE. For more...
Security update for the Scripting Engine Memory Corruption Vulnerability in Windows Server 2008: May 9, 2017
Security update for the Scripting Engine Memory Corruption Vulnerability in Windows Server 2008: May 9, 2017 Summary A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory when the engine is rendered in Internet Explorer. In a web-based attack...
April 11, 2017—KB4015551 (Monthly Rollup)
April 11, 2017—KB4015551 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4012220 released March 21, 2017 and also resolves security vulnerabilities in Internet Explorer, Scripting Engine, Hyper-V, Win32K, Adobe Type Manager...
Scripting Engine Information Disclosure Vulnerability
An information disclosure vulnerability exists when the scripting engine does not properly handle objects in memory in Microsoft Edge. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. In a web-based attack scenario, an...
KLA11835 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. A memory corrupti...
CVE-2017-0130
The scripting engine in Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability." This vulnerability is different from that described in...
CVE-2017-0040
The scripting engine in Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability." This vulnerability is different from that described in...
CVE-2017-0040
The scripting engine in Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability." This vulnerability is different from that described in...
Memory corruption
The scripting engine in Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability." This vulnerability is different from that described in...
Information disclosure
The VBScript engine in Microsoft Internet Explorer 11 allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Scripting Engine Information Disclosure Vulnerability." This vulnerability is different from those described in CVE-2017-0018, and...
CVE-2017-0040
CVE-2017-0040 / CVE-2017-0130 describe memory corruption in the Scripting Engine of Internet Explorer 9–11 that can allow remote code execution or denial of service when a user visits a crafted site. The flaw affects the IE scripting engine, and the two CVEs are stated as distinct from one anothe...
CVE-2017-0040
The scripting engine in Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability." This vulnerability is different from that described in...
CVE-2017-0130
The CVE-2017-0130 entry covers a memory corruption vulnerability in the Scripting Engine of Microsoft Internet Explorer versions 9–11. According to the description, a crafted web site could cause memory corruption, enabling remote attackers to execute arbitrary code or cause a denial of service. ...
Microsoft Internet Explorer Memory Corruption Vulnerability (CNVD-2017-03518)
Microsoft Internet Explorer IE is a web browser developed by Microsoft and is the default browser that comes with the Windows operating system.Scripting Engine is one of the JavaScript engine components. A memory corruption vulnerability exists in Scripting Engine in Microsoft IE versions 9 throu...
Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CNVD-2017-03554)
Microsoft Edge is a WEB browser that comes with win10. A security vulnerability exists in Microsoft Edge. A remote attacker can exploit the vulnerability to build a malicious web page and trick users into parsing it to obtain sensitive information...
Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CNVD-2017-03370)
Microsoft Edge is a web browser developed by Microsoft and is the default browser that comes with the Windows 10 operating system.Scripting Engine is one of the JavaScript engine components. A memory corruption vulnerability exists in the Scripting Engine component in Microsoft Edge. A remote...
Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CNVD-2017-03366)
Microsoft Edge is a web browser developed by Microsoft and is the default browser that comes with the Windows 10 operating system.Scripting Engine is one of the JavaScript engine components. A memory corruption vulnerability exists in the Scripting Engine component in Microsoft Edge. A remote...
Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CNVD-2017-03375)
Microsoft Edge is a web browser developed by Microsoft and is the default browser that comes with the Windows 10 operating system.Scripting Engine is one of the JavaScript engine components. A memory corruption vulnerability exists in the Scripting Engine component in Microsoft Edge. A remote...
Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CNVD-2017-03555)
Microsoft Edge is a WEB browser that comes with win10. A memory corruption vulnerability exists in the Microsoft Edge scripting engine. A remote attacker can exploit this vulnerability to build a malicious WEB page and trick the user into parsing it, which can crash the application or execute...
Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CNVD-2017-03376)
Microsoft Edge is a web browser developed by Microsoft and is the default browser that comes with the Windows 10 operating system.Scripting Engine is one of the JavaScript engine components. A memory corruption vulnerability exists in the Scripting Engine component in Microsoft Edge. A remote...