Description
Multiple serious vulnerabilities have been found in Microsoft Edge. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code or bypass security features.
Below is a complete list of vulnerabilities
- An improper HTTP responses parsing can be exploited remotely via a specially designed web site to spoof user interface;
- An improper exceptions handling can be exploited remotely via a specially designed web site to bypass Address Space Layout Randomization;
- An improper memory objects access can be exploited remotely via a specially designed web site to execute arbitrary code.
Original advisories
Related products
CVE list
- CVE-2016-0060 critical
- CVE-2016-0061 critical
- CVE-2016-0062 critical
- CVE-2016-0084 critical
- CVE-2016-0080 warning
- CVE-2016-0077 warning
KB list
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!