CVE-2018-8619

EUVD-2018-20232
A remote code execution vulnerability exists when the Internet Explorer VBScript execution policy does not properly restrict VBScript under specific conditions, aka "Internet Explorer Remote Code Execution Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 98%
Windows Releases
Platform
Version
Windows 10
(x64, x86)
KB4471323
1607 (x64, x86)
KB4471321
1703 (x64, x86)
KB4471327
1709 (x64, x86)
KB4471329
1803 (x64, x86)
KB4471324
1809 (arm64, x64, x86)
KB4471332
Windows 7
Service Pack 1 (x64, x86)
KB4471318
Windows 8.1
(x64, x86)
KB4471320
Windows RT 8.1
All
KB4471320
Windows Server 2008
Service Pack 2 (x64, x86)
KB4471325
Windows Server 2008 R2
Service Pack 1 (x64)
KB4471318
Windows Server 2012
Standard
KB4471330
Windows Server 2012 R2
Standard
KB4471320
Windows Server 2016
Standard
KB4471321
Windows Server 2019
Standard
KB4471332
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/106119
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8619
https://www.exploit-db.com/exploits/46023/
http://www.securityfocus.com/bid/106119
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8619
https://www.exploit-db.com/exploits/46023/