A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1236.
References
Link | Resource |
---|---|
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1208 | Patch Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-19-831/ |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Information
Published : 2019-09-11 15:15
Updated : 2020-08-24 10:37
NVD link : CVE-2019-1208
Mitre link : CVE-2019-1208
JSON object : View
CWE
CWE-416
Use After Free
Products Affected
microsoft
- windows_server_2016
- windows_7
- windows_rt_8.1
- windows_server_2019
- windows_10
- windows_8.1
- windows_server_2008
- internet_explorer
- windows_server_2012