CVE-2019-0752
published 2019-04-09CVE-2019-0752: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory…
PriorityP188high7.5CVSS 3.1
AVNACHPRNUIRSUCHIHAH
KEVITWEXPLOITRansomware
CISA Known Exploited Vulnerabilitydue 2022-08-15
Exploited in the wild
EPSS
81.55%
99.6th percentile
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0739, CVE-2019-0753, CVE-2019-0862.
Affected
30 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | chakracore | < 1.11.8 | 1.11.8 |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer_10 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
| microsoft | internet_explorer_11 | — | — |
Detection & IOCsextracted from sources · hover to see the quote
sigma↗
1009655 – Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2019-0752)
- →The vulnerability is triggered via VBScript using DISPATCH_PROPERTYPUTREF (flag 0x8) to assign an object instance to the scrollLeft property, causing mshtml!CBase::ContextInvokeEx to invoke CElement::get_scrollLeft instead of CElement::put_scrollLeft — monitor for VBScript property-put-by-reference operations on DOM scroll properties. ↗
- →Exploit technique allocates a 0x30000000-byte contiguous VARIANT array anchored at a predictable page-aligned address (0x28281000) to convert the write-what-where into an arbitrary read primitive — large heap allocations of this size in iexplore.exe are a strong exploit indicator. ↗
- →Post-exploitation persistence: c.js drops an encoded JScript file (loader.jse) into the AppData hidden folder and registers it under HKCU\Software\Microsoft\Windows\CurrentVersion\Run with value name 'loaderName' — monitor for new Run key values pointing to .jse files in AppData. ↗
- →The AutoIT downloader (2.exe) checks for the number of logical processors (>=4) as an anti-sandbox check before proceeding to download and execute malware — this is a sandbox evasion indicator to look for in AutoIT-compiled PE samples. ↗
- →The exploit uses WinExec as the final code execution primitive by forging a COM object vtable — monitor for WinExec calls originating from mshtml.dll or iexplore.exe without shellcode (no NX bypass needed). ↗
- →Capesand exploit kit delivered CVE-2019-0752 via a malvertising campaign using a hidden iframe on a page disguised as a blockchain blog discussion — look for hidden iframes on ad-network-served pages as a delivery vector. ↗
- ·The write-what-where primitive is constrained: the maximum DWORD value that can be written via the scrollLeft exploit is 0x001767dd. Exploit chains must account for this upper bound when constructing arbitrary memory writes. ↗
- ·The vulnerability is only reachable at IE emulation level IE=8 or lower, where DOM methods are dispatched via the IDispatchEx mechanism and the _FastInvokeTable fast path is active. ↗
- ·VBScript is required to produce the DISPATCH_PROPERTYPUTREF dispatch flag needed to trigger the type confusion; JavaScript alone cannot trigger this code path. ↗
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.07.6HIGHAV:N/AC:H/Au:N/C:C/I:C/A:C
vulncheck7.5HIGH
cisa7.5HIGH
vendor_msrc6.4MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-x6vm-vfwq-m3w7: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engin
ghsa_unreviewed·2022-05-13·CVSS 7.5
CVE-2019-0752 [HIGH] CWE-843 GHSA-x6vm-vfwq-m3w7: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engin
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0739, CVE-2019-0753, CVE-2019-0862.
GHSA
GHSA-rvwx-j74j-gwp8: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engin
ghsa_unreviewed·2022-05-13·CVSS 7.5
CVE-2019-0862 [HIGH] CWE-787 GHSA-rvwx-j74j-gwp8: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engin
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0739, CVE-2019-0752, CVE-2019-0753.
GHSA
GHSA-c6fx-9m9g-27cf: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine M
ghsa_unreviewed·2022-05-13·CVSS 7.5
CVE-2019-0739 [HIGH] CWE-787 GHSA-c6fx-9m9g-27cf: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine M
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0752, CVE-2019-0753, CVE-2019-0862.
GHSA
GHSA-jm9j-hwmg-m69w: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engin
ghsa_unreviewed·2022-05-13·CVSS 7.5
CVE-2019-0753 [HIGH] CWE-787 GHSA-jm9j-hwmg-m69w: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engin
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0739, CVE-2019-0752, CVE-2019-0862.
VulnCheck
Microsoft Internet Explorer Type Confusion Vulnerability
vulncheck·2019·CVSS 7.5
CVE-2019-0752 [HIGH] CWE-843 Microsoft Internet Explorer Type Confusion Vulnerability
Microsoft Internet Explorer Type Confusion Vulnerability
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer
Affected: Microsoft Internet Explorer
Required Action: Apply updates per vendor instructions.
Known Ransomware Campaign Use: Known
Exploitation References: https://www.broadcom.com/support/security-center/protection-bulletin/rig-exploit-kit-threat-that-won-t-go-away; https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json
Exploit PoC: https://vulncheck.com/xdb/0959a1e968fc
Remediation Due: 2022-08-15
CISA
Microsoft Internet Explorer Type Confusion Vulnerability
cisa·2022-02-15·CVSS 7.5
CVE-2019-0752 [HIGH] CWE-843 Microsoft Internet Explorer Type Confusion Vulnerability
Vulnerability: Microsoft Internet Explorer Type Confusion Vulnerability
Affected: Microsoft Internet Explorer
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer
Required Action: Apply updates per vendor instructions.
Notes: https://nvd.nist.gov/vuln/detail/CVE-2019-0752
Remediation Due Date: 2022-08-15
Microsoft
Scripting Engine Memory Corruption Vulnerability
vendor_msrc·2019-04-09·CVSS 6.4
CVE-2019-0752 [HIGH] Scripting Engine Memory Corruption Vulnerability
Scripting Engine Memory Corruption Vulnerability
Description: A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. If the current user is logged on with administrative user rights, an attacker who successfully exploited the vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
In a web-based attack scenario, an attacker could host a specially crafted websi
Suricata
ET EXPLOIT IE Scripting Engine Memory Corruption Vulnerability M2 (CVE-2019-0752)
suricata·2021-12-03·CVSS 7.5
CVE-2019-0752 [HIGH] ET EXPLOIT IE Scripting Engine Memory Corruption Vulnerability M2 (CVE-2019-0752)
ET EXPLOIT IE Scripting Engine Memory Corruption Vulnerability M2 (CVE-2019-0752)
Rule: alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT IE Scripting Engine Memory Corruption Vulnerability M2 (CVE-2019-0752)"; flow:established,to_client; http.stat_code; content:"200"; file.data; content:"[\w\-]{1,20})\s*=\s*document\.getElementById\(.{1,500}Class\s*(?P[\w\-]{1,20}).{1,500}End\s*Class.{1,500}set\s*(?P=obj)\.scroll((Left|Top)(Max)?|Height|Width)\s*=\s*New\s*(?P=class)/Rsi"; reference:cve,2019-0752; classtype:attempted-user; sid:2034578; rev:2; metadata:attack_target Client_Endpoint, created_at 2021_12_03, cve CVE_2019_0752, deployment Perimeter, performance_impact Significant, confidence Medium, signature_severity Major, tag Exploit, tag CISA_KEV, updated_at 2024_03_08;)
Suricata
ET EXPLOIT IE Scripting Engine Memory Corruption Vulnerability M1 (CVE-2019-0752)
suricata·2019-07-17·CVSS 7.5
CVE-2019-0752 [HIGH] ET EXPLOIT IE Scripting Engine Memory Corruption Vulnerability M1 (CVE-2019-0752)
ET EXPLOIT IE Scripting Engine Memory Corruption Vulnerability M1 (CVE-2019-0752)
Rule: alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT IE Scripting Engine Memory Corruption Vulnerability M1 (CVE-2019-0752)"; flow:established,to_client; http.stat_code; content:"200"; http.content_type; content:"text/html"; startswith; file.data; content:"<script language=|22|"; content:"VBScript"; within:8; nocase; content:"|2e|scrollLeft"; distance:0; content:"|26|h4003|09 27 20|VT_BYREF|20 7c 20|VT_I4"; distance:0; fast_pattern; content:"|28 28 28 28 5c 2e 2e 5c|"; distance:0; content:"Powershell"; within:10; nocase; content:"|26|h40|2c 20 22 23 3e 24|"; within:400; reference:url,blog.trendmicro.com/trendlabs-security-intelligence/slub-gets-rid-of-github-intensifies-slack-use; reference:u
Qualys
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR | Qualys
blogs_qualys·2022-02-23
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR | Qualys
#### Table of Contents
- Situation
- Directive Scope
- CISA Catalog of Known Exploited Vulnerabilities
- Detect CISA Vulnerabilities Using Qualys VMDR
- CISA Exploited RTI
- Detailed Operational Dashboard
- Remediation
- Federal Enterprises and Agencies Can Act Now
- Summary
- Getting Started
CISA released a directive in November 2021, recommending urgent and prioritized remediation of actively exploited vulnerabilities. Both government agencies and corporations should heed this advice. This blog outlines how Qualys Vulnerability Management, Detection & Response can be used by any organization to respond to this directive efficiently and effectively.
## Situation
Last November 2021, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) released a Binding Operational Directiv
Unit42
Script-Based Malware: A New Attacker Trend on Internet Explorer
blogs_unit42·2020-08-11·CVSS 7.5
[HIGH] Script-Based Malware: A New Attacker Trend on Internet Explorer
## Executive Summary
Over the past few months, we have detected sophisticated script-based malware through Internet Explorer (IE) browser exploits that infect Windows Operating System (OS) users. We decided to investigate those scripts to identify their key features to demonstrate that they are attractive for attackers and so could lead to a trend worth paying attention to.
Indeed, with scripting languages, attackers have flexible and accessible tools to easily create sophisticated malware with multiple features and obfuscations. To demonstrate this, we chose two examples of script-based malware used to infect Windows OS users. Those examples were found from two separate sources, but came from the same IE browser exploit of the CVE-2019-0752 vulnerability. The first is a JScript Remote A
Unit42
Script-Based Malware: A New Attacker Trend on Internet Explorer
blogs_unit42·2020-08-11·CVSS 7.5
[HIGH] Script-Based Malware: A New Attacker Trend on Internet Explorer
Threat Research Center
Threat Research
Malware
## Script-Based Malware: A New Attacker Trend on Internet Explorer
Edouard Bochin
Tao Yan
Jin Chen
Fang Liu
Published: August 11, 2020
Malware
Threat Research
AutoIT
Downloader
Exploit kit
Remote Access Trojan
## Executive Summary
Over the past few months, we have detected sophisticated script-based malware through Internet Explorer (IE) browser exploits that infect Windows Operating System (OS) users. We decided to investigate those scripts to identify their key features to demonstrate that they are attractive for attackers and so could lead to a trend worth paying attention to.
Indeed, with scripting languages, attackers have flexible and accessible tools to easily create sophisticated malware with multiple features and
Tenable
How VPR Helped Prioritize the Most Dangerous CVEs in 2019
blogs_tenable·2020-04-30
How VPR Helped Prioritize the Most Dangerous CVEs in 2019
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Trendmicro
Capesand verwendet öffentliche Exploits und Tools
blogs_trendmicro·2019-11-07
Capesand verwendet öffentliche Exploits und Tools
Ausnutzung von Schwachstellen
## Capesand verwendet öffentliche Exploits und Tools
Die Sicherheitsforscher von Trend Micro haben kürzlich ein neues Exploit Kit namens Capesand entdeckt, das auf neuere Sicherheitslücken in Adobe Flash und Microsoft Internet Explorer (IE) zielt.
By: Elliot Cao, Joseph C Chen, William Gamazo Sanchez Nov 07, 2019 Read time: ( words)
Save to Folio
Originalbeitrag von Elliot Cao, Joseph C. Chen, William Gamazo Sanchez
Die Sicherheitsforscher von Trend Micro haben kürzlich ein neues Exploit Kit namens Capesand entdeckt. Das Exploit Kit zielt auf neuere Sicherheitslücken in Adobe Flash und Microsoft Internet Explorer (IE). Die Recherche offenbarte auch den Missbrauch einer Sicherheitslücke für IE von 2015. Die kriminellen Hintermänner entwickeln das Kit stän
Trendmicro
New Capesand Exploit Kit Reuses Public Exploits, Tools
blogs_trendmicro·2019-11-05
New Capesand Exploit Kit Reuses Public Exploits, Tools
Malware
# New Capesand Exploit Kit Reuses Public Exploits, Tools
We found exploit kit Capesand abusing recently disclosed gaps in Adobe Flash and Internet Explorer (IE). Further investigation showed it also exploits a 2015 flaw in IE, appearing to reuse source code from a publicly shared exploit kit code.
By: Elliot Cao, Joseph C Chen, William Gamazo Sanchez
2019/11/05
Read time: ( words)
Save to Folio
Updated as of 7:00 PM Eastern Standard Time to remove one included image.
We discovered a new exploit kit named Capesand in October 2019. Capesand attempts to exploit recent vulnerabilities in Adobe Flash and Microsoft Internet Explorer (IE). Based on our investigation, it also exploits a 2015 vulnerability for IE. It seems the cybercriminals behind the exploit kit are continuously de
Trendmicro
New Capesand Exploit Kit Reuses Public Exploits, Tools
blogs_trendmicro·2019-11-05
New Capesand Exploit Kit Reuses Public Exploits, Tools
Malware
# New Capesand Exploit Kit Reuses Public Exploits, Tools
We found exploit kit Capesand abusing recently disclosed gaps in Adobe Flash and Internet Explorer (IE). Further investigation showed it also exploits a 2015 flaw in IE, appearing to reuse source code from a publicly shared exploit kit code.
By: Elliot Cao, Joseph C Chen, William Gamazo Sanchez
Nov 05, 2019
Read time: ( words)
Save to Folio
Updated as of 7:00 PM Eastern Standard Time to remove one included image.
We discovered a new exploit kit named Capesand in October 2019. Capesand attempts to exploit recent vulnerabilities in Adobe Flash and Microsoft Internet Explorer (IE). Based on our investigation, it also exploits a 2015 vulnerability for IE. It seems the cybercriminals behind the exploit kit are continuously
Trendmicro
Write-What-Where in Internet Explorer Exploitation
blogs_trendmicro·2019-05-21·CVSS 7.5
CVE-2019-0752 [HIGH] Write-What-Where in Internet Explorer Exploitation
# RCE Without Native Code: Exploitation of a Write-What-Where in Internet Explorer
Learn about a Write-What-Where in Internet Explorer exploitation.
By: Simon Zuckerbraun
2019/05/21
Read time: ( words)
Save to Folio
On the last day of 2018, I discovered a type confusion vulnerability in Internet Explorer that yields a clean write-what-where primitive. It patched this April as CVE-2019-0752. As an exercise, I wrote a full exploit for this vulnerability using an original exploitation technique. Even though the vulnerability itself produces only a controlled write and cannot be triggered to produce an info leak, nevertheless there is a direct and highly reliable path to code execution. Furthermore, the exploit uses no shellcode. In this article, please join me for a tour of the details o
Trendmicro
Write-What-Where in Internet Explorer Exploitation
blogs_trendmicro·2019-05-21·CVSS 7.5
CVE-2019-0752 [HIGH] Write-What-Where in Internet Explorer Exploitation
## RCE Without Native Code: Exploitation of a Write-What-Where in Internet Explorer
Learn about a Write-What-Where in Internet Explorer exploitation.
By: Simon Zuckerbraun May 21, 2019 Read time: ( words)
Save to Folio
On the last day of 2018, I discovered a type confusion vulnerability in Internet Explorer that yields a clean write-what-where primitive. It patched this April as CVE-2019-0752 . As an exercise, I wrote a full exploit for this vulnerability using an original exploitation technique. Even though the vulnerability itself produces only a controlled write and cannot be triggered to produce an info leak, nevertheless there is a direct and highly reliable path to code execution. Furthermore, the exploit uses no shellcode. In this article, please join me for a tour of the detail
Trendmicro
Write-What-Where in Internet Explorer Exploitation
blogs_trendmicro·2019-05-21·CVSS 7.5
CVE-2019-0752 [HIGH] Write-What-Where in Internet Explorer Exploitation
## RCE Without Native Code: Exploitation of a Write-What-Where in Internet Explorer
Learn about a Write-What-Where in Internet Explorer exploitation.
By: Simon Zuckerbraun 2019/05/21 Read time: ( words)
Save to Folio
On the last day of 2018, I discovered a type confusion vulnerability in Internet Explorer that yields a clean write-what-where primitive. It patched this April as CVE-2019-0752 . As an exercise, I wrote a full exploit for this vulnerability using an original exploitation technique. Even though the vulnerability itself produces only a controlled write and cannot be triggered to produce an info leak, nevertheless there is a direct and highly reliable path to code execution. Furthermore, the exploit uses no shellcode. In this article, please join me for a tour of the details
Trendmicro
Write-What-Where in Internet Explorer Exploitation
blogs_trendmicro·2019-05-21·CVSS 7.5
CVE-2019-0752 [HIGH] Write-What-Where in Internet Explorer Exploitation
## RCE Without Native Code: Exploitation of a Write-What-Where in Internet Explorer
Learn about a Write-What-Where in Internet Explorer exploitation.
By: Simon Zuckerbraun May 21, 2019 Read time: ( words)
Save to Folio
On the last day of 2018, I discovered a type confusion vulnerability in Internet Explorer that yields a clean write-what-where primitive. It patched this April as CVE-2019-0752 . As an exercise, I wrote a full exploit for this vulnerability using an original exploitation technique. Even though the vulnerability itself produces only a controlled write and cannot be triggered to produce an info leak, nevertheless there is a direct and highly reliable path to code execution. Furthermore, the exploit uses no shellcode. In this article, please join me for a tour of the detail
Trendmicro
Patch Tuesday: Fixes for Two Exploited Vulnerabilities
blogs_trendmicro·2019-04-10·CVSS 7.5
[HIGH] Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Sfruttamento vulnerabilità
## Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important.
By: Trend Micro Research Apr 10, 2019 Read time: ( words)
Save to Folio
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important. The patches this month cover a significant number of Microsoft products and services, namely: Internet Explorer, Edge, Windows, ChakraCore, Microsoft Office and Microsoft Office
Trendmicro
Patch Tuesday: Fixes for Two Exploited Vulnerabilities
blogs_trendmicro·2019-04-10·CVSS 7.5
[HIGH] Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Exploits & Vulnerabilities
## Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important.
By: Trend Micro Research 2019/04/10 Read time: ( words)
Save to Folio
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important. The patches this month cover a significant number of Microsoft products and services, namely: Internet Explorer, Edge, Windows, ChakraCore, Microsoft Office and Microsoft Office Se
Trendmicro
Patch Tuesday: Fixes for Two Exploited Vulnerabilities
blogs_trendmicro·2019-04-10·CVSS 7.5
[HIGH] Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Ausnutzung von Schwachstellen
## Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important.
By: Trend Micro Research Apr 10, 2019 Read time: ( words)
Save to Folio
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important. The patches this month cover a significant number of Microsoft products and services, namely: Internet Explorer, Edge, Windows, ChakraCore, Microsoft Office and Microsoft Offi
Trendmicro
Patch Tuesday: Fixes for Two Exploited Vulnerabilities
blogs_trendmicro·2019-04-10·CVSS 7.5
[HIGH] Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Exploits & Vulnerabilities
## Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important.
By: Trend Micro Research Apr 10, 2019 Read time: ( words)
Save to Folio
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important. The patches this month cover a significant number of Microsoft products and services, namely: Internet Explorer, Edge, Windows, ChakraCore, Microsoft Office and Microsoft Office
Trendmicro
Patch Tuesday: Fixes for Two Exploited Vulnerabilities
blogs_trendmicro·2019-04-10·CVSS 7.5
[HIGH] Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Exploits y vulnerabilidades
## Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important.
By: Trend Micro Research Apr 10, 2019 Read time: ( words)
Save to Folio
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important. The patches this month cover a significant number of Microsoft products and services, namely: Internet Explorer, Edge, Windows, ChakraCore, Microsoft Office and Microsoft Office
Trendmicro
Patch Tuesday: Fixes for Two Exploited Vulnerabilities
blogs_trendmicro·2019-04-10·CVSS 7.5
[HIGH] Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Exploits & Vulnerabilities
# Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important.
By: Trend Micro Research
Apr 10, 2019
Read time: ( words)
Save to Folio
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important. The patches this month cover a significant number of Microsoft products and services, namely: Internet Explorer, Edge, Windows, ChakraCore, Microsoft Office and Microsoft Office
Trendmicro
Patch Tuesday: Fixes for Two Exploited Vulnerabilities
blogs_trendmicro·2019-04-10·CVSS 7.5
[HIGH] Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Exploits & Vulnerabilities
## Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important.
By: Trend Micro Research Apr 10, 2019 Read time: ( words)
Save to Folio
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important. The patches this month cover a significant number of Microsoft products and services, namely: Internet Explorer, Edge, Windows, ChakraCore, Microsoft Office and Microsoft Office
Trendmicro
Patch Tuesday: Fixes for Two Exploited Vulnerabilities
blogs_trendmicro·2019-04-10·CVSS 7.5
[HIGH] Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Exploits & Vulnerabilities
# Patch Tuesday: Fixes for Two Exploited Vulnerabilities
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important.
By: Trend Micro Research
2019/04/10
Read time: ( words)
Save to Folio
Microsoft’s April security update includes fixes for 74 CVEs, including two vulnerabilities that are actively exploited in the wild. Of the vulnerabilities patched in this update, 13 are rated Critical and 61 are rated Important. The patches this month cover a significant number of Microsoft products and services, namely: Internet Explorer, Edge, Windows, ChakraCore, Microsoft Office and Microsoft Office Se
Zscaler
Zscaler found Multiple Security Vulnerabilities | 04-09-2019
blogs_zscaler·CVSS 7.8
[HIGH] Zscaler found Multiple Security Vulnerabilities | 04-09-2019
Provide users with seamless, secure, reliable access to applications and data.
Build and run secure cloud apps, enable zero trust cloud connectivity, and protect workloads from data center to cloud.
Provide zero trust connectivity for IoT and OT devices and secure remote access to OT systems.
Provide zero trust site-to-site connectivity and reliable access to B2B apps for partners.
Industry Report
Zscaler: A Leader in the 2025 Gartner® Magic Quadrant™ for Security Service Edge (SSE)
USE CASES
INDUSTRY & MARKET SOLUTIONS
PARTNERS
TECHNOLOGY PARTNERS
Resource Center
Events & Trainings
Security Research & Services
Tools
Community & Support
CXO REVOLUTIONARIES
Amplifying the voices of real-world digital and zero trust pioneers
Discover how it began and where it’s going
Meet o
http://packetstormsecurity.com/files/153078/Microsoft-Internet-Explorer-Windows-10-1809-17763.316-Memory-Corruption.htmlhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0752https://www.zerodayinitiative.com/advisories/ZDI-19-359/http://packetstormsecurity.com/files/153078/Microsoft-Internet-Explorer-Windows-10-1809-17763.316-Memory-Corruption.htmlhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0752https://www.zerodayinitiative.com/advisories/ZDI-19-359/https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-0752
2019-04-09
Published
2022-02-15
Added to CISA KEV
Exploited in the wild