KLA10771
Multiple vulnerabilities in Microsoft Internet Explorer and Edge
Updated: 03/21/2016
CVSS
?
7.6
Detect date
?
03/08/2016
Severity
?
Critical
Description

Multiple serious vulnerabilities have been found in Microsoft Internet Explorer & Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code or obtain sensitive information.

Below is a complete list of vulnerabilities

  1. An improper memory objects access can be exploited remotely via a specially designed website to execute arbitrary code;
  2. An improper referrer policy handling can be exploited remotely via a specially designed website to obtain sensitive information.
Affected products

Microsoft Internet Explorer versions from 9 through 11
Microsoft Edge

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

MS16-024
MS16-023

Impacts
?
ACE 
[?]

OSI 
[?]
Related products
Microsoft Internet Explorer
Microsoft Edge
CVE-IDS
?

CVE-2016-0130
CVE-2016-0129
CVE-2016-0125
CVE-2016-0124
CVE-2016-0123
CVE-2016-0116
CVE-2016-0114
CVE-2016-0113
CVE-2016-0112
CVE-2016-0111
CVE-2016-0110
CVE-2016-0109
CVE-2016-0108
CVE-2016-0107
CVE-2016-0106
CVE-2016-0105
CVE-2016-0104
CVE-2016-0103
CVE-2016-0102

Microsoft official advisories
MS16-024
MS16-023
KB list

3142019
3142015
3140745
3139929
3140768