Lucene search
K

8 matches found

0day.today
0day.today
added 2018/12/01 12:0 a.m.133 views

Microsoft VBScript OLEAUT32!VariantClear / scrrun!VBADictionary::put_Item Use-After-Free

vbscript: use-after-free in OLEAUT32!VariantClear and scrrun!VBADictionary::putItem CVE-2018-8544 There is a use-after-free vulnerability possibly two vulnerabilities triggerable by the same PoC, see below in Microsoft VBScript. The vulnerability has been confirmed in Internet Explorer on Windows...

9.3CVSS1AI score0.47556EPSS
Exploits3
Packet Storm
Packet Storm
added 2018/11/30 12:0 a.m.84 views

Microsoft VBScript OLEAUT32!VariantClear / scrrun!VBADictionary::put_Item Use-After-Free

vbscript: use-after-free in OLEAUT32!VariantClear and scrrun!VBADictionary::putItem CVE-2018-8544 There is a use-after-free vulnerability possibly two vulnerabilities triggerable by the same PoC, see below in Microsoft VBScript. The vulnerability has been confirmed in Internet Explorer on Windows...

1AI score0.47556EPSS
Exploits3
Circl
Circl
added 2018/11/14 5:39 p.m.16 views

CVE-2018-8544

creationtimestamp| type| source ---|---|--- 2018-11-14 17:39:00+00:00| seen| MISP/5bec5b59-b2b0-4506-9c63-32a40a021402 2018-11-30 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/45923...

9.3CVSS6.8AI score0.47556EPSS
Exploits3References1
OSV
OSV
added 2018/11/14 1:29 a.m.4 views

CVE-2018-8544

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server...

8.8CVSS7.9AI score0.47556EPSS
Exploits3References4
CVE
CVE
added 2018/11/14 1:0 a.m.179 views

CVE-2018-8544

CVE-2018-8544 is a remote code execution vulnerability in the Windows VBScript engine that corrupts memory when handling objects in VBScript. It affects multiple Windows versions (e.g., Windows 7, Windows 10, various Server editions) and is triggered by memory manipulation of VBScript objects, al...

9.3CVSS7.7AI score0.47556EPSS
Exploits3References4Affected Software8
Check Point Advisories
Check Point Advisories
added 2018/11/13 12:0 a.m.3 views

Microsoft Windows VBScript Engine Remote Code Execution (CVE-2018-8544)

A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9.3CVSS8.8AI score0.47556EPSS
Exploits3
Symantec
Symantec
added 2018/11/13 12:0 a.m.380 views

Microsoft Windows VBScript Engine CVE-2018-8544 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft Windows 10 Version...

0.8AI score0.47556EPSS
Exploits3Affected Software3
Tenable Nessus
Tenable Nessus
added 2018/11/13 12:0 a.m.117 views

KB4467700: Windows Server 2008 November 2018 Security Update

The remote Windows host is missing security update 4467700 or cumulative update 4467706. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability...

10CVSS8.2AI score0.63294EPSS
Exploits10References13
Rows per page
Query Builder