Microsoft Windows Multiple Remote Code Execution Vulnerabilities (KB4507434)
Severity Level: High Severity
CVSS Base Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C
Summary: This host is missing a critical security
update according to Microsoft KB4507434
Detection Method: Checks if a vulnerable version is present
on the target host.
Technical Details: Multiple flaws are due to,
- Scripting engine improperly handles objects in memory in Microsoft browsers.
- Microsoft browsers improperly access objects in memory.
Impact: Successful exploitation will allow an attacker
to execute arbitrary code in the context of the current user. An attacker who
successfully exploited the vulnerabilities could gain the same user rights as the
current user and execute arbitrary code.
Affected Versions: Internet Explorer 11 on Windows Server 2012
Recommendations: The vendor has released updates. Please see
the references for more information.