Vulnerability in Microsoft Internet Explorer 10
CVE-2019-1390
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'.
EPSS: 0.119 (93.9th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Internet Explorer 10 — versions Windows Server 2012
- Microsoft Internet Explorer 11 — versions Windows 7 for 32-bit Systems Service Pack 1, Windows 7 for x64-based Systems Service Pack 1, Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Microsoft Internet Explorer 11 On Windows 10 Version 1903 For 32-bit Systems — versions unspecified
- Microsoft Internet Explorer 11 On Windows 10 Version 1903 For Arm64-based Systems — versions unspecified
- Microsoft Internet Explorer 11 On Windows 10 Version 1903 For X64-based Systems — versions unspecified
- Microsoft Internet Explorer 11 On Windows Server 2012 — versions unspecified
- Microsoft Internet Explorer 9 — versions Windows Server 2008 for 32-bit Systems Service Pack 2, Windows Server 2008 for x64-based Systems Service Pack 2
References
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1390 (x_refsource_MISC)