1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Microsoft IE and Edge CVE-2019-0911

Web Attack: Microsoft IE and Edge CVE-2019-0911

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects the attempt to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions.

Additional Information

Microsoft Internet Explorer and Edge are web browser available for Windows.

Microsoft Internet Explorer and Edge are prone to a remote memory-corruption vulnerability. Specifically, this issue occurs because the scripting engine fails to properly handle objects in memory.

Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions.

Affected

  • Multiple versions of Internet Explorer 10, 11, and Microsoft Edge.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube