Lucene search
K

7 matches found

CVE
CVE
added 2017/04/12 2:0 p.m.149 views

CVE-2017-0158

CVE-2017-0158 is a Windows scripting engine memory corruption vulnerability. The issue arises from improper handling/sanitization of in-memory handles in the Scripting Engine, enabling remote code execution when a user visits a malicious site or opens a crafted document. Affected platforms includ...

7.6CVSS7.5AI score0.12558EPSS
Exploits0References3Affected Software8
Tenable Nessus
Tenable Nessus
added 2017/04/12 12:0 a.m.156 views

KB4015067: Security Update for the Scripting Engine Memory Corruption Vulnerability (April 2017)

The remote Windows host is missing security update KB4015067. It is, therefore, affected by a flaw in the VBScript engine due to improper handling of objects in memory. An unauthenticated, remote attacker can exploit this, by convincing a user to visit a malicious website or open a specially...

7.6CVSS8AI score0.12558EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2017/04/12 12:0 a.m.96 views

Microsoft Windows Monthly Rollup (KB4015550)

This host is missing a monthly rollup according to Microsoft KB4015550. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.4AI score0.45648EPSS
Exploits9References29
OpenVAS
OpenVAS
added 2017/04/12 12:0 a.m.124 views

Microsoft Windows Monthly Rollup (KB4015549)

This host is missing a monthly rollup according to Microsoft security update KB4015549. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS6.8AI score0.99933EPSS
Exploits33References20
Check Point Advisories
Check Point Advisories
added 2017/04/11 12:0 a.m.7 views

Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2017-0158)

A Use-After-Free vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to an error in the way VBScript engine manipulates the assignment of dynamic-array variables. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page...

7.6CVSS7.3AI score0.12558EPSS
Exploits0
Kaspersky
Kaspersky
added 2017/04/11 12:0 a.m.507 views

KLA11059 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. A remote cod...

9.3CVSS9.8AI score0.99933EPSS
Exploits36References57
Tenable Nessus
Tenable Nessus
added 2017/04/11 12:0 a.m.448 views

KB4015221: Windows 10 Version 1507 April 2017 Cumulative Update

The remote Windows 10 Version 1507 host is missing security update KB4015221. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the open-source libjpeg image processing library due to improper handling of objects in memory. An...

9.3CVSS8.2AI score0.17848EPSS
Exploits8References11
Rows per page
Query Builder