Rapid7 Vulnerability & Exploit Database

Microsoft CVE-2020-1403: VBScript Remote Code Execution Vulnerability

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Microsoft CVE-2020-1403: VBScript Remote Code Execution Vulnerability

Severity
8
CVSS
(AV:N/AC:H/Au:N/C:C/I:C/A:C)
Published
07/14/2020
Created
07/15/2020
Added
07/14/2020
Modified
11/18/2021

Description

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'.

Solution(s)

  • msft-kb4558998-2ea0212a-a53c-4d0c-a139-eb30c18cddca
  • msft-kb4558998-68af4d94-88ce-4036-a1c5-8f0d7c2a76cb
  • msft-kb4558998-e138232a-fc42-458a-b9c5-0825d3c32cbb
  • msft-kb4565479-1e7aa44a-f5be-4a50-a445-7f47ab705d6e
  • msft-kb4565479-2573e933-da59-42fe-8152-5123a2014796
  • msft-kb4565479-2b00d116-cf2a-4746-a622-027a18b86758
  • msft-kb4565479-2d86d41b-3903-4420-b79d-4354b1b65d63
  • msft-kb4565479-4d6b3517-5a06-4795-b61d-33d85bd2f71b
  • msft-kb4565479-6d32d171-79fb-4870-9412-c797290c81a6
  • msft-kb4565479-6e163c4b-2ce3-4f5d-a23c-8b440394a44c
  • msft-kb4565479-87ad1f72-bde4-4220-81ff-9b5105498760
  • msft-kb4565479-941b7b29-4d88-4e0d-9853-1153d0a3a927
  • msft-kb4565479-b447c6f5-da94-45ba-9022-defe6120a5ad
  • msft-kb4565479-db8e9b8f-1e7a-43a6-a1ce-a476eb48ca9b
  • msft-kb4565479-e216d823-268c-489f-91ea-efe5021f908e
  • msft-kb4565479-eadc7df2-7329-4327-8991-2c6f63cabc5e
  • msft-kb4565483-1005a8f3-10da-48b0-86e1-adebe1fd5dd3
  • msft-kb4565483-389b25fc-ee6e-4387-9694-36cf3d6fba53
  • msft-kb4565483-3953c76a-16d0-4028-977a-0a5108a8c373
  • msft-kb4565483-3d9c274a-fec8-44c8-b2f5-10ba9359d556
  • msft-kb4565483-b0c5cbda-81c1-4b37-82c2-ffc7cff33c57
  • msft-kb4565483-b3f51921-6afd-4c38-8092-51c1be956806
  • msft-kb4565489-1d68cd90-971e-43f4-ab9e-626ae9429fc9
  • msft-kb4565489-72f35143-59a4-43d2-a23b-ec3cdbbf729d
  • msft-kb4565503-197596bc-0893-4b83-a165-eac8b3a0ca9f
  • msft-kb4565503-77d8f96b-d56a-4f77-b492-0cca5e877ed3
  • msft-kb4565503-9f4ad806-f4a9-4868-b9a2-900b0a123d96
  • msft-kb4565508-785b1349-3f0c-4bd5-9026-82852f0f9be3
  • msft-kb4565508-cbdd311f-9094-4a87-a5ce-8c10c46070be
  • msft-kb4565511-51c72e01-8b82-457e-b308-29975f3bb759
  • msft-kb4565511-72f5c720-ee6c-48ae-904b-ec5449b9a560
  • msft-kb4565511-c59cd6f3-fff6-4368-9321-3a1275583276
  • msft-kb4565513-0bfed89d-18f0-4885-adc9-d6958a84f614
  • msft-kb4565513-4e2556e1-8b2f-4d6c-ad22-67b11736daf5

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;