Lucene search
K

13 matches found

Github Security Blog
Github Security Blog
added 2022/05/13 1:21 a.m.27 views

ChakraCore RCE Vulnerability

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2019-0539, CVE-2019-0568...

7.6CVSS7AI score0.7999EPSS
Exploits3References6Affected Software1
Packet Storm
Packet Storm
added 2019/03/04 12:0 a.m.72 views

Microsoft Edge Chakra 1.11.4 Type Confusion

/ Exploit Title: getting Read permission through Type Confusion Date: date Exploit Author: Fahad Aid Alharbi Vendor Homepage: https://www.microsoft.com/en-us/ Version: Chakra 1114 REQUIRED Tested on: Windows 10 CVE : cve-2019-0539 / / author @0x4142 = Fahad Aid Alharbi cve-2019-0539 Getting Read ...

7.6CVSS0.1AI score0.82902EPSS
Exploits8
exploitpack
exploitpack
added 2019/03/04 12:0 a.m.37 views

Microsoft Edge Chakra 1.11.4 - Read Permission via Type Confusion

Microsoft Edge Chakra 1.11.4 - Read Permission via Type Confusion / Exploit Title: getting Read permission through Type Confusion Date: date Exploit Author: Fahad Aid Alharbi Vendor Homepage: https://www.microsoft.com/en-us/ Version: Chakra 1114 REQUIRED Tested on: Windows 10 CVE : cve-2019-0539 ...

7.6CVSS0.5AI score0.82902EPSS
Exploits8
Exploit DB
Exploit DB
added 2019/03/04 12:0 a.m.93 views

Microsoft Edge Chakra 1.11.4 - Read Permission via Type Confusion

/ Exploit Title: getting Read permission through Type Confusion Date: date Exploit Author: Fahad Aid Alharbi Vendor Homepage: https://www.microsoft.com/en-us/ Version: Chakra 1114 REQUIRED Tested on: Windows 10 CVE : cve-2019-0539 / / author @0x4142 = Fahad Aid Alharbi cve-2019-0539 Getting Read ...

7.6CVSS7.7AI score0.82902EPSS
Exploits8
0day.today
0day.today
added 2019/03/04 12:0 a.m.96 views

Microsoft Edge Chakra 1.11.4 - Read Permission via Type Confusion

/ Exploit Title: getting Read permission through Type Confusion Date: date Exploit Author: Fahad Aid Alharbi Vendor Homepage: https://www.microsoft.com/en-us/ Version: Chakra 1114 REQUIRED Tested on: Windows 10 CVE : cve-2019-0539 / / author @0x4142 = Fahad Aid Alharbi cve-2019-0539 Getting Read ...

7.5CVSS0.5AI score0.82902EPSS
Exploits8
Circl
Circl
added 2019/01/09 2:53 p.m.34 views

CVE-2019-0539

creationtimestamp| type| source ---|---|--- 2019-01-09 14:53:47+00:00| seen| MISP/5c360a14-9018-4d13-b6c9-714c0a021402 2019-01-18 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/46204 2019-01-18 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/46203 2019-02-13...

7.6CVSS7.6AI score0.82902EPSS
Exploits8References9
OpenVAS
OpenVAS
added 2019/01/09 12:0 a.m.57 views

Microsoft Windows Multiple Vulnerabilities (KB4480961)

This host is missing a critical security update according to Microsoft KB4480961 SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.2AI score0.82902EPSS
Exploits36References3
CVE
CVE
added 2019/01/08 9:0 p.m.170 views

CVE-2019-0539

CVE-2019-0539 is an in-memory memory-corruption vulnerability in Microsoft Edge/ChakraCore where the Chakra JIT/type-confusion paths expose remote code execution. Public references describe exploitation through Type Confusion in Chakra Core/Edge, with exploit examples showing read/write primitive...

7.6CVSS7.4AI score0.82902EPSS
Exploits8References5Affected Software1
Talos Blog
Talos Blog
added 2019/01/08 11:40 a.m.305 views

Microsoft Patch Tuesday — January 2019: Vulnerability disclosures and Snort coverage

Microsoft released its monthly security update today, disclosing a variety of vulnerabilities in several of its products. The latest Patch Tuesday covers 49 vulnerabilities, seven of which are rated “critical,” 40 that are considered “important” and one that is “moderate.” This release also...

10CVSS0.9AI score0.82902EPSS
Exploits39
Check Point Advisories
Check Point Advisories
added 2019/01/08 12:0 a.m.4 views

Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2019-0539)

A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS5.1AI score0.82902EPSS
Exploits8
Kaspersky
Kaspersky
added 2019/01/08 12:0 a.m.66 views

KLA11397 Multiple vulnerabilities in Microsoft Browsers

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Microsoft Edge can be exploited remotely via specially...

9.3CVSS9AI score0.82902EPSS
Exploits19References20
Tenable Nessus
Tenable Nessus
added 2019/01/08 12:0 a.m.50 views

KB4480962: Windows 10 January 2019 Security Update

The remote Windows host is missing security update 4480962. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtai...

9.3CVSS7.9AI score0.82902EPSS
Exploits36References29
Tenable Nessus
Tenable Nessus
added 2019/01/08 12:0 a.m.182 views

KB4480961: Windows 10 Version 1607 and Windows Server 2016 January 2019 Security Update

The remote Windows host is missing security update 4480961. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtai...

9.3CVSS8AI score0.82902EPSS
Exploits36References30
Rows per page
Query Builder