» 2019 » 6월

CVE-2019-1033

Posted on 2019년 6월 12일2019년 6월 13일 by admin

CVE-2019-1033

A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka ‘Microsoft Office SharePoint XSS Vulnerability’. This CVE ID is unique from CVE-2019-1031, CVE-2019-1032, CVE-2019-1036.

Source: CVE-2019-1033

CVE-2019-1024

Posted on 2019년 6월 12일2019년 6월 13일 by admin

CVE-2019-1024

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka ‘Chakra Scripting Engine Memory Corruption Vulnerability’. This CVE ID is unique from CVE-2019-0989, CVE-2019-0991, CVE-2019-0992, CVE-2019-0993, CVE-2019-1002, CVE-2019-1003, CVE-2019-1051, CVE-2019-1052.

Source: CVE-2019-1024

CVE-2019-1043

Posted on 2019년 6월 12일2019년 6월 13일 by admin

CVE-2019-1043

A remote code execution vulnerability exists in the way that comctl32.dll handles objects in memory, aka ‘Comctl32 Remote Code Execution Vulnerability’.

Source: CVE-2019-1043

CVE-2019-1047

Posted on 2019년 6월 12일2019년 6월 13일 by admin

CVE-2019-1047

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka ‘Windows GDI Information Disclosure Vulnerability’. This CVE ID is unique from CVE-2019-0968, CVE-2019-0977, CVE-2019-1009, CVE-2019-1010, CVE-2019-1011, CVE-2019-1012, CVE-2019-1013, CVE-2019-1015, CVE-2019-1016, CVE-2019-1046, CVE-2019-1048, CVE-2019-1049, CVE-2019-1050.

Source: CVE-2019-1047

CVE-2019-1041

Posted on 2019년 6월 12일2019년 6월 13일 by admin

CVE-2019-1041

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka ‘Windows Kernel Elevation of Privilege Vulnerability’. This CVE ID is unique from CVE-2019-1065.

Source: CVE-2019-1041

CVE-2019-1046

Posted on 2019년 6월 12일2019년 6월 13일 by admin

CVE-2019-1046

Source: CVE-2019-1046

CVE-2019-1040

Posted on 2019년 6월 12일2019년 6월 13일 by admin

CVE-2019-1040

A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (Message Integrity Check) protection, aka ‘Windows NTLM Tampering Vulnerability’.

Source: CVE-2019-1040

CVE-2019-1045

Posted on 2019년 6월 12일2019년 6월 13일 by admin

CVE-2019-1045

An elevation of privilege vulnerability exists in the way that the Windows Network File System (NFS) handles objects in memory, aka ‘Windows Network File System Elevation of Privilege Vulnerability’.

Source: CVE-2019-1045

CVE-2019-1039

Posted on 2019년 6월 12일2019년 6월 13일 by admin

CVE-2019-1039

An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application, aka ‘Windows Kernel Information Disclosure Vulnerability’.

Source: CVE-2019-1039

CVE-2019-1038

Posted on 2019년 6월 12일2019년 6월 13일 by admin

CVE-2019-1038

A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka ‘Microsoft Browser Memory Corruption Vulnerability’.

Source: CVE-2019-1038