LASER_oneXM

Level 30
Verified
Joined
Feb 4, 2016
Messages
1,969
Operating System
Windows 8.1
Antivirus
Kaspersky
#1
Microsoft patched a bevy of critical bugs impacting its Edge browser that could allow an attacker to hijack a targeted PC simply by steering a victim to a rigged website harboring specially crafted exploit code. In all, Microsoft tackled four critical Edge vulnerabilities, part of the company’s first 2019 round of Patch Tuesday bug fixes.

Each of the browser bugs are memory corruption vulnerabilities. Three (CVE-2019-0539, CVE-2019-0568, CVE-2019-0567) are tied to Microsoft’s own JavaScript engine called Chakra Scripting Engine. The fourth (CVE-2019-0565) is a remote code execution vulnerability that exists when Edge improperly accesses objects in memory, according to Microsoft.