FortiClient VulnerabilityMicrosoft Internet Explorer CVE-2019-0768 Input Validation Bypass Vulnerability
Description
A security feature bypass vulnerability exists when Internet Explorer VBScript execution policy does not properly restrict VBScript under specific conditions, and to allow requests that should otherwise be ignored. An attacker who successfully exploited the vulnerability could force the browser to send data that would otherwise be restricted. In a web-based attack scenario, an attacker could host a website in an attempt to exploit this vulnerability. In addition, compromised websites and websites that accept or host user-provided content could contain specially crafted content that could exploit the vulnerability. The update addresses the vulnerability by fixing how the Internet Explorer VBScript execution policy validates embedded VBScript content.
Affected Applications
Internet Explorer 11
CVE References
CVE-2019-0768Other References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2019-0768| ID | 57066 |
| Created | Mar 12, 2019 |
| Description Updated |
Dec 19, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Microsoft |
| Patch | auto |
| Application | Internet Explorer 11 |