Lucene search
K

6 matches found

OSV
OSV
added 2017/05/12 2:29 p.m.42 views

CVE-2017-0238

A remote code execution vulnerability exists in Microsoft browsers in the way JavaScript scripting engines handle objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0224, CVE-2017-0228, CVE-2017-0229, CVE-2017-0230, CVE-2017-0234,...

7.5CVSS7.1AI score0.18074EPSS
Exploits1References2
CVE
CVE
added 2017/05/12 2:0 p.m.326 views

CVE-2017-0238

CVE-2017-0238 is linked to memory-corruption in the JavaScript engine used by Microsoft Edge/ChakraCore. The connected advisories describe a remote code execution path when handling in-memory objects, affecting Edge/ChakraCore. Mitigation guidance in the docs points to applying Security Updates t...

7.6CVSS7.6AI score0.18074EPSS
Exploits1References2Affected Software2
OpenVAS
OpenVAS
added 2017/05/10 12:0 a.m.45 views

Microsoft Internet Explorer Multiple Vulnerabilities (KB4018271)

This host is missing a critical security update according to Microsoft security updates KB4018271. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

8.8CVSS6.8AI score0.29645EPSS
Exploits1References15
OpenVAS
OpenVAS
added 2017/05/10 12:0 a.m.61 views

Microsoft Windows Multiple Vulnerabilities (KB4019472)

This host is missing a critical/important security update according to Microsoft KB4019472. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS6.7AI score0.84138EPSS
Exploits22References44
Tenable Nessus
Tenable Nessus
added 2017/05/09 12:0 a.m.256 views

Windows Server 2012 May 2017 Security Updates

The remote Windows host is missing security update 4019214 or cumulative update 4019216. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in the Windows COM Aggregate Marshaler due to an unspecified flaw. A local attacker can exploit this,...

9.3CVSS7.5AI score0.84138EPSS
Exploits16References21
Check Point Advisories
Check Point Advisories
added 2017/05/09 12:0 a.m.4 views

Microsoft Browser Scripting Engine Memory Corruption (CVE-2017-0238)

A heap buffer overflow vulnerability exists in Microsoft Edge. The vulnerability is due to the way JavaScript engine renders when handling objects in memory. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...

7.6CVSS7.8AI score0.18074EPSS
Exploits1
Rows per page
Query Builder