Lucene search
AnonymousZDI-19-723HistoryAug 16, 2019 - 12:00 a.m.
Microsoft Windows jscript9 RegExp.input Type Confusion Remote Code Execution Vulnerability
2019-08-1600:00:00
Anonymous
www.zerodayinitiative.com
18
0.043 Low
EPSS
Percentile
92.4%
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way the JIT compiler handles the RegExp.input property in jscript9.dll. By performing actions in JavaScript, an attacker can trigger a type confusion condition. An attacker can leverage this vulnerability to execute code in the context of the current process.
Related
checkpoint_advisories
checkpoint_advisories
symantec
symantec
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2019-06-11 07:00:00
prion
prion
Remote code execution
2019-06-12 14:29:00
Remote code execution
2019-06-12 14:29:00
Remote code execution
2019-06-12 14:29:00
cve
cve
cvelist
cvelist
nvd
nvd
mskb
mskb
Cumulative security update for Internet Explorer: June 11, 2019
2019-06-11 07:00:00
June 11, 2019âKB4503276 (Monthly Rollup)
2019-06-11 07:00:00
June 11, 2019âKB4503285 (Monthly Rollup)
2019-06-11 07:00:00
nessus
nessus
Security Updates for Internet Explorer (June 2019)
2019-06-11 00:00:00
KB4503263: Windows Server 2012 June 2019 Security Update
2019-06-11 00:00:00
KB4503290: Windows 8.1 and Windows Server 2012 R2 June 2019 Security Update
2019-06-11 00:00:00
kaspersky
kaspersky
KLA11500 Multiple vulnerabilities in Microsoft Browsers
2019-06-11 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4503276)
2019-06-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4503292)
2019-06-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4503293)
2019-06-12 00:00:00
talosblog
talosblog