来源

关联漏洞

描述

Microsoft Edge Elevation of Privilege Vulnerability

介绍

## Vulnerability

Microsoft Edge Elevation of Privilege Vulnerability

## Vulnerability Description 

This vulnerability allows an attacker to execute javascript code on every host without the permission, also an attacker can steal local system files, and this also results in changing internal developer settings in Microsoft Edge. 

## CVE-ID

CVE-2019-0678

## Vendor

Microsoft

## Product

Microsoft Edge

## Disclosure Timeline

1. 28 November 2018 reported to the vendor 
2. 03 December 2019 coordinated public release of advisory

## Credits

Nikhil Mittal

文件快照

 [4.0K]  /data/pocs/7e3aaf1c52beebebcc272f65a7a0de215b17b4fd
└── [ 565]  README.md

0 directories, 1 file

备注