Advisory Date: 13 February 2019

  DESCRIPTION

Microsoft addresses vulnerabilities in its February security bulletin. Trend Micro Deep Security covers the following:

  • CVE-2019-0593 - Scripting Engine Memory Corruption Vulnerability
    Risk Rating: Critical

    This remote code execution vulnerability exists in the handling of objects in memory in the scripting engine of Microsoft Edge. Attackers looking to exploit this vulnerability may host a specially crafted website that contains an exploit to this vulnerability.


  • CVE-2019-0607 - Scripting Engine Memory Corruption Vulnerability
    Risk Rating: Critical

    This remote code execution vulnerability exists in the handling of objects in memory in the scripting engine of Microsoft Edge. Attackers looking to exploit this vulnerability may host a specially crafted website that contains an exploit to this vulnerability.


  • CVE-2019-0652 - Scripting Engine Memory Corruption Vulnerability
    Risk Rating: Critical

    This remote code execution vulnerability exists in the handling of objects in memory in the scripting engine of Microsoft Edge. Attackers looking to exploit this vulnerability may host a specially crafted website that contains an exploit to this vulnerability.


  • CVE-2019-0651 - Scripting Engine Memory Corruption Vulnerability
    Risk Rating: Critical

    This remote code execution vulnerability exists in the handling of objects in memory in the scripting engine of Microsoft Edge. Attackers looking to exploit this vulnerability may host a specially crafted website that contains an exploit to this vulnerability.


  • CVE-2019-0645 - Microsoft Edge Memory Corruption Vulnerability
    Risk Rating: Critical

    This remote code execution vulnerability exists in the handling of objects in memory by Microsoft Edge. This handling is corrected by this specific patch.


  • CVE-2019-0655 - Scripting Engine Memory Corruption Vulnerability
    Risk Rating: Critical

    This remote code execution vulnerability exists in the handling of objects in memory in the scripting engine of Microsoft Edge. Attackers looking to exploit this vulnerability may host a specially crafted website that contains an exploit to this vulnerability.


  • CVE-2019-0640 - Scripting Engine Memory Corruption Vulnerability
    Risk Rating: Critical

    This remote code execution vulnerability exists in the handling of objects in memory in the scripting engine of Microsoft Edge. Attackers looking to exploit this vulnerability may host a specially crafted website that contains an exploit to this vulnerability.


  • CVE-2019-0590 - Scripting Engine Memory Corruption Vulnerability
    Risk Rating: Critical

    This remote code execution vulnerability exists in the handling of objects in memory in the scripting engine of Microsoft Edge. Attackers looking to exploit this vulnerability may host a specially crafted website that contains an exploit to this vulnerability.


  • CVE-2019-0658 - Scripting Engine Information Disclosure Vulnerability
    Risk Rating: Important

    This information disclosure vulnerability exists in the handling of objects in memory in the scripting engine of Microsoft Edge. Attackers looking to exploit this vulnerability may host a specially crafted website that contains an exploit to this vulnerability.


  • CVE-2019-0630 - Windows SMB Remote Code Execution Vulnerability
    Risk Rating: Important

    This remote code execution vulnerability exists in the handling of certain requests in the Microsoft Server Message Block 2.0 server. Attackers looking to exploit this vulnerability may send a specially crafted packet that exploits this vulnerability.


  • CVE-2019-0644 - Scripting Engine Memory Corruption Vulnerability
    Risk Rating: Critical

    This remote code execution vulnerability exists in the handling of objects in memory in the scripting engine of Microsoft Edge. Attackers looking to exploit this vulnerability may host a specially crafted website that contains an exploit to this vulnerability.


  • CVE-2019-0669 - Microsoft Excel Information Disclosure Vulnerability
    Risk Rating: Important

    This information disclosure vulnerability exists in the improper disclosure of contents in memory by Microsoft Excel. Attackers looking to exploit this vulnerability may find a way to persuade users to open a specially crafted MS Excel file that exploits this vulnerability.


  • CVE-2019-0676 - Internet Explorer Information Disclosure Vulnerability
    Risk Rating: Important

    This information disclosure vulnerability exists in the improper handling of objects in memory by Internet Explorer. Attackers looking to exploit this vulnerability may find a way to persuade users to open a specially crafted website.


  • CVE-2019-0650 - Microsoft Edge Memory Corruption Vulnerability
    Risk Rating: Critical

    This remote code execution vulnerability exists in the improper accessing of objects in memory by Microsoft Edge. Attackers looking to exploit this vulnerability may host a specially crafted website that contains an exploit to this vulnerability.


  • CVE-2019-0610 - Scripting Engine Memory Corruption Vulnerability
    Risk Rating: Important

    This remote code execution vulnerability exists in the improper accessing of objects in memory by Microsoft Edge. Attackers looking to exploit this vulnerability may host a specially crafted website that contains an exploit to this vulnerability.


  • CVE-2019-0648 - Scripting Engine Information Disclosure Vulnerability
    Risk Rating: Important

    This information disclosure vulnerability exists in the improper disclosing of contents in memory by Chakra. This update changes certain ways of handling objects in memory.


  • CVE-2019-0606 - Internet Explorer Memory Corruption Vulnerability
    Risk Rating: Critical

    This remote code execution vulnerability exists in the improper accessing of objects in memory by Internet Explorer. This update changes certain ways of handling objects in memory.


  • CVE-2019-0591 - Scripting Engine Memory Corruption Vulnerability
    Risk Rating: Critical

    This remote code execution vulnerability exists in the improper accessing of objects in memory by Microsoft Edge. This update changes certain functions in the scripting engine when it handle objects in memory.


  • CVE-2019-0642 - Scripting Engine Memory Corruption Vulnerability
    Risk Rating: Critical

    This remote code execution vulnerability exists in the improper accessing of objects in memory by Microsoft Edge. This update changes certain functions in the scripting engine when it handle objects in memory.


  INFORMATION EXPOSURE

Trend Micro Deep Security shields networks through the following Deep Packet Inspection (DPI) rules. Trend Micro customers using the Vulnerability Protection product or OfficeScan with Intrusion Defense Firewall (IDF) plugin are also protected from attacks using these vulnerabilities.

Vulnerability ID DPI Rule Number DPI Rule Name Release Date Vulnerability Protection Compatibility
CVE-2019-0593 1009503 Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0593) 12-Feb-19 YES
CVE-2019-0607 1009504 Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0607) 12-Feb-19 YES
CVE-2019-0652 1009512 Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0652) 12-Feb-19 YES
CVE-2019-0651 1009510 Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0651) 12-Feb-19 YES
CVE-2019-0621, CVE-2019-0628, CVE-2019-0656, CVE-2019-0661 1009500 Microsoft Windows Multiple Security Vulnerabilities (Feb-2019) 12-Feb-19 YES
CVE-2019-0645 1009509 Microsoft Edge Memory Corruption Vulnerability (CVE-2019-0645) 12-Feb-19 YES
CVE-2019-0655 1009516 Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0655) 12-Feb-19 YES
CVE-2019-0640 1009507 Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0640) 12-Feb-19 YES
CVE-2019-0590 1009501 Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0590) 12-Feb-19 YES
CVE-2019-0658 1009514 Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0658) 12-Feb-19 YES
CVE-2019-0630 1009511 Microsoft Windows SMB Remote Code Execution Vulnerability (CVE-2019-0630) 12-Feb-19 YES
CVE-2019-0644 1009499 Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0644) 12-Feb-19 YES
CVE-2019-0669 1009515 Microsoft Excel Information Disclosure Vulnerability (CVE-2019-0669) 12-Feb-19 YES
CVE-2019-0676 1009513 Microsoft Internet Explorer Information Disclosure Vulnerability (CVE-2019-0676) 12-Feb-19 YES
CVE-2019-0650 1009498 Microsoft Edge Memory Corruption Vulnerability (CVE-2019-0650) 12-Feb-19 YES
CVE-2019-0610 1009506 Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0610) 12-Feb-19 YES
CVE-2019-0648 1009497 Microsoft Edge Scripting Engine Information Disclosure Vulnerability (CVE-2019-0648) 12-Feb-19 YES
CVE-2019-0606 1009505 Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2019-0606) 12-Feb-19 YES
CVE-2019-0591 1009502 Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0591) 12-Feb-19 YES
CVE-2019-0642 1009508 Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2019-0642) 12-Feb-19 YES