ID:7349 - Exploit for Buffer overflow in Microsoft products - CVE-2021-34480

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:7349 - Exploit for Buffer overflow in Microsoft products - CVE-2021-34480

ID:7349 - Exploit for Buffer overflow in Microsoft products - CVE-2021-34480

Published: February 14, 2022


Vulnerability identifier: #VU55726
Vulnerability risk: Medium
CVE-ID: CVE-2021-34480
CWE-ID: CWE-119
Exploitation vector: Remote access
Vulnerable software:
Windows
Windows Server
Microsoft Internet Explorer

Link to public exploit:


Vulnerability description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to incorrect JIT optimization in jscript9.dll in the Scripting Engine. A remote attacker can trick a victim to open a specially crafted file or visit a malicious website, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.


Remediation

Install updates from vendor's website.