vulnerability mitigation

  1. Z

    Dos RCE, Internet Explorer 9\10\11 (VBScript Engine), CVE-2019-0667

    VBScript: Memory corruption in VbsErase Related CVE Numbers: CVE-2019-0667. There is an issue in VBScript in the VbsErase function. In some cases (see the attached PoC), VbsErase fails to clear the argument variable properly, which can trivially lead to crafting a variable with the array...