Microsoft Windows Scripting Engine Memory Corruption Vulnerability (KB4522007)

Technical Details

Severity Level:

High Severity

CVSS Score:


CVSS Base Vector:

This host is missing a critical security update according to Microsoft KB4522007

Detection Method:
Checks if a vulnerable version is present on the target host.

Technical Details:
The flaw exist due to an error in the way that the scripting engine handles objects in memory in Internet Explorer.

Successful exploitation will allow an attacker to execute arbitrary code in the context of the current user.

Affected Versions:
Internet Explorer 9 on Windows Server 2008 x32/x64 Internet Explorer 10 on Windows Server 2012 Internet Explorer 11 on Windows 7 x32/x64, Windows 8.1 x32/x64, Windows Server 2008 R2 x64, Windows Server 2012 and Windows Server 2012 R2

The vendor has released updates. Please see the references for more information.

Solution Type:
Vendor Patch

Detection Type:


Windows : Microsoft Bulletins

Creation Time:

2019-09-24 05:50:47

Modification Time:

2019-09-25 12:48:23

Find and Fix this Vulnerability:

Mageni can help you to find out if you have this or more vulnerabilities exposing you to hackers, ransomware and malware: Download Mageni's Free Edition


Don't pay for a vulnerability scanning and management platform. This one is free.

Mageni provides a free vulnerability scanning and management platform which helps you need to find, prioritize, remediate and manage your vulnerabilities.