Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiDmitri KaslovTelspace SystemsZDI-18-534
HistoryMay 29, 2018 - 12:00 a.m.

(0Day) Microsoft Windows JScript Error Object Use-After-Free Remote Code Execution Vulnerability

2018-05-2900:00:00
Dmitri KaslovTelspace Systems
www.zerodayinitiative.com
9

0.158 Low

EPSS

Percentile

96.0%

JSON

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of Error objects in JScript. By performing actions in script, an attacker can cause a pointer to be reused after it has been freed. An attacker can leverage this vulnerability to execute code under the context of the current process.

Related

mscve 1
krebs 1
checkpoint_advisories 1
symantec 1
osv 1
cve 2
github 1
nvd 2
cvelist 2
prion 2
mskb 11
nessus 9
thn 1
threatpost 1
kaspersky 2
openvas 9
talosblog 1
trendmicroblog 1
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2018-06-12 07:00:00
krebs
krebs
Microsoft Patch Tuesday, June 2018 Edition
2018-06-12 21:04:05
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2018-8267)
2018-06-12 00:00:00
symantec
symantec
Microsoft Internet Explorer Scripting Engine CVE-2018-8267 Remote Memory Corruption Vulnerability
2018-06-12 00:00:00
osv
osv
ChakraCore RCE Vulnerability
2022-05-13 01:20:43
cve
cve
CVE-2018-8243
2018-06-14 12:29:02
CVE-2018-8267
2018-06-14 12:29:02
github
github
ChakraCore RCE Vulnerability
2022-05-13 01:20:43
nvd
nvd
CVE-2018-8267
2018-06-14 12:29:02
CVE-2018-8243
2018-06-14 12:29:02
cvelist
cvelist
CVE-2018-8243
2018-06-14 12:00:00
CVE-2018-8267
2018-06-14 12:00:00
prion
prion
Remote code execution
2018-06-14 12:29:00
Remote code execution
2018-06-14 12:29:00
mskb
mskb
Cumulative security update for Internet Explorer: June 12, 2018
2018-06-12 07:00:00
June 12, 2018—KB4284855 (Monthly Rollup)
2018-06-12 07:00:00
June 12, 2018—KB4284815 (Monthly Rollup)
2018-06-12 07:00:00
nessus
nessus
Security Updates for Internet Explorer (June 2018)
2018-06-12 00:00:00
KB4284846: Windows Server 2012 June 2018 Security Update
2018-06-12 00:00:00
KB4284867: Windows 7 and Windows Server 2008 R2 June 2018 Security Update
2018-06-12 00:00:00
thn
thn
Microsoft June 2018 Patch Tuesday Pushes 11 Critical Security Updates
2018-06-12 18:32:00
threatpost
threatpost
June Patch Tuesday: Microsoft Issues Critical Fixes for DNS, Cortana
2018-06-12 21:36:17
kaspersky
kaspersky
KLA11892 Multiple vulnerabilties in Microsoft Products (ESU)
2018-06-12 00:00:00
KLA11265 Multiple vulnerabilities in Microsoft Internet Explorer & Edge
2018-06-12 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4284815)
2018-06-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4284826)
2018-06-13 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4284860)
2018-06-13 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday - June 2018
2018-06-12 11:58:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of June 11, 2018
2018-06-15 12:39:57

0.158 Low

EPSS

Percentile

96.0%

JSON
Related for ZDI-18-534
mscve1krebs1checkpoint_advisories1symantec1osv1cve2github1nvd2cvelist2prion2mskb11nessus9thn1threatpost1kaspersky2openvas9talosblog1trendmicroblog1