CVE-2018-8544

HIGH

Windows VBScript Engine - Remote Code Execution via Use-After-Free

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-8544. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit demonstrates a use-after-free vulnerability in Microsoft VBScript (CVE-2018-8544) by manipulating a Scripting.Dictionary object and triggering a crash in OLEAUT32!VariantClear. The PoC leverages a class destructor to free memory while a variant is still being accessed, leading to a memory corruption condition.

Description

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · htmldoswindows

https://www.exploit-db.com/exploits/45923

View Code ZIP pw:eip

This exploit demonstrates a use-after-free vulnerability in Microsoft VBScript (CVE-2018-8544) by manipulating a Scripting.Dictionary object and triggering a crash in OLEAUT32!VariantClear. The PoC leverages a class destructor to free memory while a variant is still being accessed, leading to a memory corruption condition.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Internet Explorer with VBScript (Windows 7 with latest patches)

No auth needed

Prerequisites: Internet Explorer with VBScript enabled · Page Heap may need to be enabled to observe the crash

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1042118

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/105787

Patch, Vendor Advisory x_refsource_confirm

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8544

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/45923/

Scores

CVSS v3 8.8

EPSS 0.7417

EPSS Percentile 98.9%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-416

Status published

Products (17)

microsoft/windows_10

microsoft/windows_10 1607

microsoft/windows_10 1703

microsoft/windows_10 1709

microsoft/windows_10 1803

microsoft/windows_10 1809

microsoft/windows_7

microsoft/windows_8.1

microsoft/windows_rt_8.1

microsoft/windows_server_2008

... and 7 more

Published Nov 14, 2018

Tracked Since Feb 18, 2026