← back
CVE-2018-8174

CVE-2018-8174

CVSS 7.5 HIGHEPSS 87.8%● KEVCWE-787
In short

A flaw in Windows VBScript engine allows attackers to run malicious code remotely by exploiting how the engine handles objects in memory. This can lead to complete system compromise if a user visits a malicious website or opens a crafted document.

Technical detail

Out-of-bounds write vulnerability (CWE-787) in VBScript engine allows remote code execution via specially crafted objects. Attack vector is network-based; user interaction required (visiting malicious site or opening document). Impacts confidentiality, integrity, and availability across multiple Windows versions.

Summary generated and translated by AI from the official description.
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
Microsoft · Windows 10Microsoft · Windows 10 ServersMicrosoft · Windows 7Microsoft · Windows 8.1Microsoft · Windows RT 8.1Microsoft · Windows Server 2008Microsoft · Windows Server 2008 R2Microsoft · Windows Server 2012Microsoft · Windows Server 2012 R2Microsoft · Windows Server 2016
public PoCs found17
githubgithub.com/0x09AL/CVE-2018-8174-msf168githubgithub.com/Yt1g3r/CVE-2018-8174_EXP140githubgithub.com/piotrflorczyk/cve-2018-8174_analysis30githubgithub.com/ruthlezs/ie11_vbscript_exploit9githubgithub.com/SyFi/CVE-2018-81746githubgithub.com/www201001/https-github.com-iBearcat-CVE-2018-8174_EXP1githubgithub.com/www201001/https-github.com-iBearcat-CVE-2018-8174_EXP.git-1githubgithub.com/sinisterghost/https-github.com-iBearcat-CVE-2018-8174_EXP0githubgithub.com/lisinan988/CVE-2018-8174-exp0githubgithub.com/orf53975/Rig-Exploit-for-CVE-2018-81740githubgithub.com/likekabin/CVE-2018-8174-msf0githubgithub.com/ericisnotrealname/CVE-2018-8174_EXP0githubgithub.com/delina1/CVE-2018-81740githubgithub.com/delina1/CVE-2018-8174_EXP0githubgithub.com/DarkFlameMaster-bit/CVE-2018-8174_EXP0exploitdbwww.exploit-db.com/exploits/44741unverifiedcve_referencewww.exploit-db.com/exploits/44741/unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://blog.0patch.com/2018/05/a-single-instruction-micropatch-for.htmlhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8174https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-8174https://www.exploit-db.com/exploits/44741/http://www.securityfocus.com/bid/103998