4 matches found
CVE-2019-0678
An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain.In a web-based attack scenario, an attacker could host a website that is used t...
CVE-2019-0678
CVE-2019-0678 is described in connected sources as an elevation of privilege in Microsoft Edge caused by failure to properly enforce cross-domain policies, allowing a remote attacker to access information from one domain and inject it into another. The CNVD entry explicitly notes Edge’s cross-dom...
KB4489882: Windows 10 Version 1607 and Windows Server 2016 March 2019 Security Update
The remote Windows host is missing security update 4489882. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address. An attacker who successfully exploited this vulnerability...
KB4489871: Windows 10 Version 1703 March 2019 Security Update
The remote Windows host is missing security update 4489871. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address. An attacker who successfully exploited this vulnerability...