CVE-2018-8619

Name of the Vulnerable Software and Affected Versions Internet Explorer versions 9 through 11

Description A remote code execution issue exists due to improper restriction of VBScript under specific conditions. This could allow a remote attacker to execute arbitrary code with the permissions of the current user by using a specially crafted web page. The issue is related to a buffer overflow in memory, which can be exploited to run code with medium-integrity level privileges.

Recommendations For Internet Explorer 9, update to a version that properly restricts VBScript execution. For Internet Explorer 10, update to a version that properly restricts VBScript execution. For Internet Explorer 11, update to a version that properly restricts VBScript execution. As a temporary workaround, consider disabling VBScript execution in Internet Explorer until a patch is available.