Vulnerabilities > Microsoft > High

DATE CVE VULNERABILITY TITLE RISK
2018-06-26 CVE-2018-0599 Untrusted Search Path vulnerability in Microsoft Windows
Untrusted search path vulnerability in the installer of Visual C++ Redistributable allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
microsoft CWE-426
7.8
2018-06-26 CVE-2018-0598 Untrusted Search Path vulnerability in Microsoft Windows
Untrusted search path vulnerability in Self-extracting archive files created by IExpress bundled with Microsoft Windows allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
microsoft CWE-426
7.8
2018-06-26 CVE-2018-0597 Untrusted Search Path vulnerability in Microsoft Visual Studio Code
Untrusted search path vulnerability in the installer of Visual Studio Code allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
microsoft CWE-426
7.8
2018-06-26 CVE-2018-0596 Untrusted Search Path vulnerability in Microsoft Visual Studio Community
Untrusted search path vulnerability in the installer of Visual Studio Community allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
microsoft CWE-426
7.8
2018-06-26 CVE-2018-0595 Untrusted Search Path vulnerability in Microsoft Skype
Untrusted search path vulnerability in the installer of Skype for Windows allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
microsoft CWE-426
7.8
2018-06-26 CVE-2018-0594 Untrusted Search Path vulnerability in Microsoft Skype
Untrusted search path vulnerability in Skype for Windows allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
microsoft CWE-426
7.8
2018-06-26 CVE-2018-0593 Untrusted Search Path vulnerability in Microsoft Onedrive
Untrusted search path vulnerability in the installer of Microsoft OneDrive allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
microsoft CWE-426
7.8
2018-06-26 CVE-2018-0592 Untrusted Search Path vulnerability in Microsoft Onedrive
Untrusted search path vulnerability in Microsoft OneDrive allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
local
low complexity
microsoft CWE-426
7.8
2018-06-14 CVE-2018-8267 Out-of-bounds Write vulnerability in Microsoft Internet Explorer 10/11/9
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10.
network
high complexity
microsoft CWE-787
7.5
2018-06-14 CVE-2018-8251 Out-of-bounds Write vulnerability in Microsoft products
A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka "Media Foundation Memory Corruption Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.
network
high complexity
microsoft CWE-787
7.5