1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Microsoft Chakra Script Engine CVE-2019-0539

Web Attack: Microsoft Chakra Script Engine CVE-2019-0539

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects the attempt to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions.

Additional Information

Microsoft Edge is a web browser available for Windows.

Microsoft Edge is prone to a remote memory-corruption vulnerability. Specifically, this issue occurs because the scripting engine fails to properly handle objects in memory in Microsoft Edge.

Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions.

Affected

  • Microsoft Edge for Microsoft Windows 10 and Server 2016.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube