Lucene search
K

21 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:6 a.m.8 views

CVE-2019-1367

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1221...

7.6CVSS7.4AI score0.52729EPSS
Exploits1References1
Securelist
Securelist
added 2020/06/24 10:0 a.m.878 views

Magnitude exploit kit – evolution

Exploit kits are not as widespread as they used to be. In the past, they relied on the use of already patched vulnerabilities. Newer and more secure web browsers with automatic updates simply do not allow known vulnerabilities to be exploited. It was very different back in the heyday of Adobe Fla...

7.6CVSS8.7AI score0.87814EPSS
Exploits31
OpenVAS
OpenVAS
added 2019/10/09 12:0 a.m.79 views

Microsoft Windows Multiple Vulnerabilities (KB4519976)

This host is missing a critical security update according to Microsoft KB4519976 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.9CVSS6.9AI score0.76451EPSS
Exploits5References3
Microsoft KB
Microsoft KB
added 2019/10/08 12:0 a.m.64 views

October 3, 2019—KB4524147 (OS Build 18362.388)

October 3, 2019—KB4524147 OS Build 18362.388 IMPORTANT This is a required security update that expands the out-of-band update dated September 23, 2019. This security update includes the Internet Explorer scripting engine security vulnerability CVE-2019-1367 mitigation and corrects a recent printi...

7.6CVSS7.6AI score0.52729EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2019/10/08 12:0 a.m.211 views

October 3, 2019—KB4524152 (OS Build 14393.3243)

October 3, 2019—KB4524152 OS Build 14393.3243 IMPORTANT This is a required security update that expands the out-of-band update dated September 23, 2019. This security update includes the Internet Explorer scripting engine security vulnerability CVE-2019-1367 mitigation and corrects a recent...

7.6CVSS7.1AI score0.52729EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2019/10/08 12:0 a.m.158 views

October 3, 2019—KB4524153 (OS Build 10240.18335)

October 3, 2019—KB4524153 OS Build 10240.18335 IMPORTANT This is a required security update that expands the out-of-band update dated September 23, 2019. This security update includes the Internet Explorer scripting engine security vulnerability CVE-2019-1367 mitigation and corrects a recent...

7.6CVSS7.7AI score0.52729EPSS
Exploits0
CISA
CISA
added 2019/10/03 12:0 a.m.43 views

Microsoft Re-Releases Security Updates

Microsoft has re-released security updates to address a vulnerability in Microsoft software. A remote attacker could exploit this vulnerability to take control of an affected system. Updates are now available automatically via Windows Update or Windows Server Update Services. The Cybersecurity an...

7.6CVSS7.4AI score0.52729EPSS
Exploits0References1
Qualys Blog
Qualys Blog
added 2019/09/24 8:13 p.m.466 views

Microsoft Released Out-of-Band Security Updates – How to Detect and Remediate

Microsoft released an out-of-band update yesterday that fixes two critical vulnerabilities - The Internet Explorer remote code execution vulnerability CVE-2019-1367 and Microsoft Defender Denial of Service Vulnerability CVE-2019-1255. According to the Microsoft advisory CVE-2019-1367, the Interne...

7.6CVSS8.1AI score0.52729EPSS
Exploits0
The Hacker News
The Hacker News
added 2019/09/24 7:48 a.m.2 views

Microsoft Releases Emergency Patches for IE 0-Day and Windows Defender Flaw

It's not a Patch Tuesday, but Microsoft is rolling out emergency out-of-band security patches for two new vulnerabilities, one of which is a critical Internet Explorer zero-day that cyber criminals are actively exploiting in the wild. Discovered by Clément Lecigne of Google's Threat Analysis Grou...

7.6CVSS7.7AI score0.52729EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/09/24 12:0 a.m.60 views

Windows 10, Server 2016 and Server 2019 September 2019 Security Update (CVE-2019-1367) (deprecated)

The plugin has been deprecated because it is preventing the reporting of valid vulnerabilities due to the way Microsoft handles the jscript file C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2021/06/01. Deprecated due to FN issues with jscript & cumulative updates. include"compat.inc"...

7.9AI score0.52729EPSS
Exploits0References9
Check Point Advisories
Check Point Advisories
added 2019/09/24 12:0 a.m.15 views

Microsoft Internet Explorer Use After free (CVE-2019-1367)

A use-after-free vulnerability exists in Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS8AI score0.52729EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/09/24 12:0 a.m.56 views

Security Update for Internet Explorer (CVE-2019-1367)

The Internet Explorer installation on the remote host is missing security updates. It is, therefore, affected by a remote code execution vulnerability in the way that the scripting engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execut...

7.6CVSS7.6AI score0.52729EPSS
Exploits0References3
Check Point Advisories
Check Point Advisories
added 2019/09/24 12:0 a.m.14 views

Microsoft Internet Explorer Use After free (CVE-2019-1367)

A use-after-free vulnerability exists in Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS8AI score0.52729EPSS
Exploits0
OpenVAS
OpenVAS
added 2019/09/24 12:0 a.m.40 views

Microsoft Windows Scripting Engine Memory Corruption Vulnerability (KB4522015)

This host is missing a critical security update according to Microsoft KB4522015 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

7.6CVSS7.6AI score0.52729EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2019/09/24 12:0 a.m.34 views

Microsoft Windows Scripting Engine Memory Corruption Vulnerability (KB4522009)

This host is missing a critical security update according to Microsoft KB4522009 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

7.6CVSS7.6AI score0.52729EPSS
Exploits0References3
Circl
Circl
added 2019/09/23 8:31 p.m.19 views

CVE-2019-1367

creationtimestamp| type| source ---|---|--- 2019-09-23 20:31:14+00:00| seen| https://t.me/ctinow/15985 2019-09-24 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=421 2019-09-24 09:51:37+00:00| seen| https://t.me/thehackernews/473 2019-09-24 09:55:12+00:00| exploited|...

7.6CVSS7AI score0.52729EPSS
Exploits0References12
CVE
CVE
added 2019/09/23 7:14 p.m.1142 views

CVE-2019-1367

CVE-2019-1367 is a remote code-execution vulnerability in Microsoft Internet Explorer’s scripting engine memory handling. Affects Internet Explorer; described as memory corruption when the scripting engine handles objects in memory. The CVE is linked to ongoing mitigation activity: Microsoft rele...

7.6CVSS7.8AI score0.52729EPSS
In wildExploits0References2Affected Software1
CISA
CISA
added 2019/09/23 12:0 a.m.45 views

Microsoft Releases Out-of-Band Security Updates

Microsoft has released out-of-band security updates to address vulnerabilities in Microsoft software. A remote attacker could exploit one of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators t...

7.6CVSS7.8AI score0.52729EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2019/09/23 12:0 a.m.54 views

KLA11873 ACE vulnerability in Microsoft Products (ESU)

A memory corruption vulnerability was found in Microsoft Products Extended Support Update. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2019-1367 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit...

7.6CVSS7.4AI score0.52729EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2019/09/23 12:0 a.m.43 views

CVE-2019-1367

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka ‘Scripting Engine Memory Corruption Vulnerability’. This CVE ID is unique from CVE-2019-1221. Recent assessments: gwillcox-r7 at November 22, 2020 2:47am UTC...

7.6CVSS8.3AI score0.52729EPSS
In wildExploits1References3
Rows per page
Query Builder