» 2019 » 4월

CVE-2019-0808

Posted on 2019년 4월 9일2019년 4월 9일 by admin

CVE-2019-0808

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka ‘Win32k Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2019-0797.

Source: CVE-2019-0808

CVE-2019-0798

Posted on 2019년 4월 9일2019년 4월 9일 by admin

CVE-2019-0798

A spoofing vulnerability exists when a Lync Server or Skype for Business Server does not properly sanitize a specially crafted request, aka ‘Skype for Business and Lync Spoofing Vulnerability’.

Source: CVE-2019-0798

CVE-2019-0804

Posted on 2019년 4월 9일2019년 4월 9일 by admin

CVE-2019-0804

An information disclosure vulnerability exists in the way Azure WaLinuxAgent creates swap files on resource disks, aka ‘Azure Linux Agent Information Disclosure Vulnerability’.

Source: CVE-2019-0804

CVE-2019-0784

Posted on 2019년 4월 9일2019년 4월 9일 by admin

CVE-2019-0784

A remote code execution vulnerability exists in the way that the ActiveX Data objects (ADO) handles objects in memory, aka ‘Windows ActiveX Remote Code Execution Vulnerability’.

Source: CVE-2019-0784

CVE-2019-0797

Posted on 2019년 4월 9일2019년 4월 9일 by admin

CVE-2019-0797

Source: CVE-2019-0797

CVE-2019-0783

Posted on 2019년 4월 9일2019년 4월 9일 by admin

CVE-2019-0783

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka ‘Scripting Engine Memory Corruption Vulnerability’. This CVE ID is unique from CVE-2019-0609, CVE-2019-0639, CVE-2019-0680, CVE-2019-0769, CVE-2019-0770, CVE-2019-0771, CVE-2019-0773.

Source: CVE-2019-0783

CVE-2019-9844

Posted on 2019년 4월 9일2019년 4월 9일 by admin

CVE-2019-9844

simple-markdown.js in Khan Academy simple-markdown before 0.4.4 allows XSS via a data: or vbscript: URI.

Source: CVE-2019-9844

CVE-2019-0769

Posted on 2019년 4월 9일2019년 4월 9일 by admin

CVE-2019-0769

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka ‘Scripting Engine Memory Corruption Vulnerability’. This CVE ID is unique from CVE-2019-0609, CVE-2019-0639, CVE-2019-0680, CVE-2019-0770, CVE-2019-0771, CVE-2019-0773, CVE-2019-0783.

Source: CVE-2019-0769

CVE-2019-0756

Posted on 2019년 4월 9일2019년 4월 9일 by admin

CVE-2019-0756

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka ‘MS XML Remote Code Execution Vulnerability’.

Source: CVE-2019-0756

CVE-2019-0767

Posted on 2019년 4월 9일2019년 4월 9일 by admin

CVE-2019-0767

An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application, aka ‘Windows Kernel Information Disclosure Vulnerability’. This CVE ID is unique from CVE-2019-0702, CVE-2019-0755, CVE-2019-0775, CVE-2019-0782.

Source: CVE-2019-0767