Security Updates for Internet Explorer (August 2020)

The Internet Explorer installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the MSHTML engine improperly validates input. An attacker could execute arbitrary code in the...

PT-2020-3762

Name of the Vulnerable Software and Affected Versions: Internet Explorer affected versions not specified Description: A remote code execution issue exists due to the way the scripting engine handles objects in memory in Internet Explorer. This could allow an attacker to execute arbitrary code in...

VBScript Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerabili...

June 9, 2020—KB4561605 (OS Build 15063.2409)

June 9, 2020—KB4561605 OS Build 15063.2409 Current status of Windows 10, version 1703 Windows 10, version 1703 has reached end of service for all editions. To continue receiving security and quality updates, Microsoft recommends updating to the latest version of Windows 10 . Surface Hub devices...

CVE-2020-1073

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'...

CVE-2020-1073

CVE-2020-1073 is a remote code execution vulnerability in the ChakraCore scripting engine related to memory handling of objects. Connected CNVD data indicates ChakraCore and Edge are affected. No specific affected versions, exploit details, or remediation/patch information are provided in the sup...

VBScript Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerabili...

June 9, 2020—KB4561621 (OS Build 17134.1550)

June 9, 2020—KB4561621 OS Build 17134.1550 IMPORTANT We have been evaluating the public health situation, and we understand this is impacting our customers. In response to these challenges, we are prioritizing our focus on security updates. Starting in May 2020, we are pausing all optional...

April 14, 2020—KB4549951 (OS Builds 18362.778 and 18363.778) - EXPIRED

April 14, 2020—KB4549951 OS Builds 18362.778 and 18363.778 - EXPIRED NEW 8/5/21 EXPIRATION NOTICEIMPORTANT As of 8/5/2021, this KB is no longer available from Windows Update, the Microsoft Update Catalog, or other release channels. We recommend that you update your devices to the latest security...

June 9, 2020—KB4561649 (OS Build 10240.18608)

June 9, 2020—KB4561649 OS Build 10240.18608 For more information about the various types of Windows updates, such as critical, security, driver, service packs, and so on, please see the following article. Highlights Updates to improve security when using Internet Explorer. Updates to improve...

VBScript Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerabili...

CVE-2020-1037

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge HTML-based, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'...

CVE-2020-1037

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge HTML-based, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'...

Remote code execution

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge HTML-based, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'...

CVE-2020-1065

CVE-2020-1065 refers to a remote code execution vulnerability in the ChakraCore scripting engine, caused by memory corruption when handling objects in memory. Affects ChakraCore and, via Microsoft Edge integration, related Chakra components. The impact is that an attacker could execute arbitrary ...

CVE-2020-1037

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge HTML-based, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'...

CVE-2020-1037

CVE-2020-1037 is a ChakraCore/Edge remote code execution vulnerability. The Chakra scripting engine mishandles in-memory objects, enabling an attacker to execute arbitrary code in the context of the user. Public sources (GHSA-8XV4-C7RQ-J577, NVD entry) describe it as a ChakraCore/Edge RCE without...

Microsoft Windows Multiple Vulnerabilities (KB4551853)

This host is missing a critical security update according to Microsoft KB4551853 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Windows Multiple Vulnerabilities (KB4556799)

This host is missing a critical security update according to Microsoft KB4556799 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Windows Multiple Vulnerabilities (KB4556826)

This host is missing a critical security update according to Microsoft KB4556826 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...