Vulnerability   
Search   
    Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.815621
Category:Windows : Microsoft Bulletins
Title:Microsoft Windows Scripting Engine Memory Corruption Vulnerability (KB4522007)
Summary:This host is missing a critical security; update according to Microsoft KB4522007
Description:Summary:
This host is missing a critical security
update according to Microsoft KB4522007

Vulnerability Insight:
The flaw exists due to an error in the way
that the scripting engine handles objects in memory in Internet Explorer.

Vulnerability Impact:
Successful exploitation will allow an attacker
to execute arbitrary code in the context of the current user.

Affected Software/OS:
Internet Explorer 9 on Windows Server 2008 x32/x64

Internet Explorer 10 on Windows Server 2012

Internet Explorer 11 on Windows 7 x32/x64,

Windows 8.1 x32/x64,

Windows Server 2008 R2 x64,

Windows Server 2012 and Windows Server 2012 R2

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
7.6

CVSS Vector:
AV:N/AC:H/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2019-1367
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1367
CopyrightCopyright (C) 2019 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2025 E-Soft Inc. All rights reserved.