CVE-2018-8267

Name of the Vulnerable Software and Affected Versions Internet Explorer versions 9 through 11

Description A remote code execution issue exists due to the way the scripting engine handles objects in memory. This could allow an attacker to corrupt memory and execute arbitrary code in the context of the current user. If the user has administrative rights, the attacker could take control of the system, install programs, view or modify data, or create new accounts with full rights.

Recommendations For Internet Explorer version 9, update to a newer version to mitigate the risk. For Internet Explorer version 10, update to a newer version to mitigate the risk. For Internet Explorer version 11, update to a newer version to mitigate the risk. As a temporary workaround, consider restricting the use of the scripting engine in Internet Explorer until a patch is available.