Executive Summary

Informations
NameCVE-2019-0541First vendor Publication2019-01-08
VendorCveLast vendor Modification2019-01-14

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score9.3Attack RangeNetwork
Cvss Impact Score10Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

A remote code execution vulnerability exists in the way that the MSHTML engine inproperly validates input, aka "MSHTML Engine Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Internet Explorer 9, Internet Explorer 11, Microsoft Excel Viewer, Internet Explorer 10, Office 365 ProPlus.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0541

CWE : Common Weakness Enumeration

%idName
100 %CWE-20Improper Input Validation

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1
Application3
Application5
Application1
Application1
Os6
Os1
Os1
Os1
Os2
Os2
Os1
Os1

Snort® IPS/IDS

DateDescription
2019-02-05Microsoft Internet Explorer ProgID arbitrary code execution attempt
RuleID : 48783 - Revision : 2 - Type : BROWSER-IE
2019-02-05Microsoft Internet Explorer ProgID arbitrary code execution attempt
RuleID : 48782 - Revision : 2 - Type : BROWSER-IE

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/106402
CONFIRM https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0541

Alert History

If you want to see full details history, please login or register.
0
1
2
DateInformations
2019-01-14 21:19:33
  • Multiple Updates
2019-01-10 17:19:08
  • Multiple Updates
2019-01-09 00:19:08
  • First insertion