KLA10771
Multiple vulnerabilities in Microsoft Internet Explorer and Edge
Updated: 11/15/2018
CVSS
?
7.6
Detect date
?
03/08/2016
Severity
?
Critical
Description

Multiple serious vulnerabilities have been found in Microsoft Internet Explorer & Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code or obtain sensitive information.

Below is a complete list of vulnerabilities

  1. An improper memory objects access can be exploited remotely via a specially designed website to execute arbitrary code;
  2. An improper referrer policy handling can be exploited remotely via a specially designed website to obtain sensitive information.
Affected products

Microsoft Internet Explorer versions from 9 through 11
Microsoft Edge

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

CVE-2016-0130
CVE-2016-0129
CVE-2016-0125
CVE-2016-0124
CVE-2016-0123
CVE-2016-0107
CVE-2016-0103
CVE-2016-0113
CVE-2016-0114
CVE-2016-0111
CVE-2016-0112
CVE-2016-0102
CVE-2016-0110
CVE-2016-0104
CVE-2016-0108
CVE-2016-0106
CVE-2016-0105
CVE-2016-0109
CVE-2016-0116

Impacts
?
ACE 
[?]

OSI 
[?]
Related products
Microsoft Internet Explorer
Microsoft Edge
CVE-IDS
?

CVE-2016-0130
CVE-2016-0129
CVE-2016-0125
CVE-2016-0124
CVE-2016-0123
CVE-2016-0107
CVE-2016-0103
CVE-2016-0113
CVE-2016-0114
CVE-2016-0111
CVE-2016-0112
CVE-2016-0102
CVE-2016-0110
CVE-2016-0104
CVE-2016-0108
CVE-2016-0106
CVE-2016-0105
CVE-2016-0109
CVE-2016-0116

Microsoft official advisories
Microsoft Security Update Guide
KB list

3140768
3140745
3142019
3142015
3139929