Microsoft Windows Multiple Vulnerabilities (KB5003173)

This host is missing a critical security update according to Microsoft KB5003173 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Patch Tuesday - May 2021

Here we are again with another installment of Patch Tuesday. When compared to the past few months this one feels a bit light both in severity and number of vulnerabilities addressed. Microsoft has only released patches for 55 CVEs this month, less than half of the usual volume, with only 4 of the...

CVE-2021-26419

Scripting Engine Memory Corruption Vulnerability...

CVE-2021-26419

Scripting Engine Memory Corruption Vulnerability...

Memory corruption

Scripting Engine Memory Corruption Vulnerability...

CVE-2021-26419 Scripting Engine Memory Corruption Vulnerability

...

CVE-2021-26419

CVE-2021-26419 is a memory-corruption vulnerability in Internet Explorer’s scripting engine (jscript9.dll) that can lead to arbitrary code execution. The issue affects Internet Explorer 11 (and related IE components) and is exploitable remotely via a crafted web or Office document vector, with us...

Scripting Engine Memory Corruption Vulnerability

...

May 11, 2021—KB5003233 (Monthly Rollup)

May 11, 2021—KB5003233 Monthly Rollup Important: Verify that you have installed the required updates listed in the How to get this update section before installing this update. For information about the various types of Windows updates, such as critical, security, driver, service packs, and so on...

PT-2021-3042 · Microsoft · Internet Explorer

Name of the Vulnerable Software and Affected Versions: Internet Explorer affected versions not specified Description: The issue is caused by a buffer overflow in the memory of the Scripting Engine component in Internet Explorer, allowing a remote attacker to execute arbitrary code using a special...

CVE-2021-26419

Scripting Engine Memory Corruption Vulnerability Recent assessments: architect00 at May 14, 2021 10:33am UTC reported: Details The vulnerability affects Internet Explorer 11 on all Windows Versions. It is located in the jscript9.dll library, which is used to execute javascript. Possible attack...

June 8, 2021 Public preview security update (KB5003645)

June 8, 2021 Public preview security update KB5003645 Improvements and fixes This public preview security update includes quality improvements. Key changes include: Addresses an issue in which a principal in a trusted MIT realm fails to obtain a Kerberos service ticket from Active Directory domai...

GHSA-QWWG-GC55-QQRV Out-of-bounds Write in Chakra

Chakra Scripting Engine Memory Corruption Vulnerability...

Out-of-bounds write

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0912, CVE-2019-0913, CVE-2019-0914, CVE-2019-0915, CVE-2019-0916...

Out-of-bounds write

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0912, CVE-2019-0913, CVE-2019-0914, CVE-2019-0915, CVE-2019-0916...

GHSA-HRMM-F4J8-8VXC Out-of-bounds write

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0912, CVE-2019-0913, CVE-2019-0914, CVE-2019-0915, CVE-2019-0916...

Out-of-bounds write

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0912, CVE-2019-0913, CVE-2019-0914, CVE-2019-0915, CVE-2019-0917...

GHSA-7423-5QFM-G648 Out-of-bounds write

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0912, CVE-2019-0913, CVE-2019-0914, CVE-2019-0915, CVE-2019-0917...

Out-of-bounds write

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0912, CVE-2019-0913, CVE-2019-0914, CVE-2019-0915, CVE-2019-0916...

GHSA-H23M-W6X5-JWR4 Out-of-bounds write

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0912, CVE-2019-0913, CVE-2019-0914, CVE-2019-0915, CVE-2019-0916...