header-logo
Suggest Exploit
vendor:
N/A
by:
Exploit Database
6.5
CVSS
MEDIUM
Remote Code Execution
94
CWE
Product Name: N/A
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Platforms Tested: Windows
2020

Inject into IE11

This exploit allows for medium IL javascript execution, which can be used to retrigger an IE RCE bug.

Mitigation:

Ensure that all software is up to date and patched with the latest security updates.
Source

Exploit-DB raw data:

Inject into IE11.

Will work on other sandboxes that allow the opening of windows filepickers through a broker.

You will gain medium IL javascript execution, at which point you simply retrigger your IE RCE bug.

EDB Note ~ Download: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/46919.zip

Navigation

Suggest Exploit

Services By CQR