Detect date
?
|
09/12/2017 |
Severity
?
|
High |
Description
|
Multiple serious vulnerabilities have been found in Microsoft Edge and Microsoft Internet Explorer. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, bypass security restrictions and spoof user interface. Below is a complete list of vulnerabilities:
NB: Not every vulnerability already has CVSS rating, so cumulative CVSS rating can be not representative. |
Affected products
|
Microsoft Internet Explorer versions 9 through 11 |
Solution
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Original advisories
|
CVE-2017-8756 |
Impacts
?
|
ACE [?] OSI [?] DoS [?] SB [?] PE [?] SUI [?] |
Related products
|
Microsoft Internet Explorer Microsoft Edge |
CVE-IDS
?
|
CVE-2017-87567.6Critical
CVE-2017-87477.6Critical CVE-2017-87347.6Critical CVE-2017-87297.6Critical CVE-2017-87287.6Critical CVE-2017-87577.6Critical CVE-2017-87497.6Critical CVE-2017-87387.6Critical CVE-2017-117667.6Critical CVE-2017-87507.6Critical CVE-2017-87317.6Critical CVE-2017-87537.6Critical CVE-2017-87234.3Warning CVE-2017-87244.3Warning CVE-2017-87417.6Critical CVE-2017-87544.0Warning CVE-2017-87407.6Critical CVE-2017-87527.6Critical CVE-2017-85974.3Warning CVE-2017-86609.3Critical CVE-2017-87364.3Warning CVE-2017-117647.6Critical CVE-2017-86434.3Warning CVE-2017-87517.6Critical CVE-2017-86497.6Critical CVE-2017-87487.6Critical CVE-2017-87557.6Critical CVE-2017-87377.6Critical CVE-2017-86484.3Warning CVE-2017-87394.3Warning CVE-2017-87354.3Warning CVE-2017-87334.3Warning |
Microsoft official advisories
|
Microsoft Security Update Guide |
KB list
|
|
Exploitation
|
The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/42759 https://www.exploit-db.com/exploits/42763 https://www.exploit-db.com/exploits/42758 https://www.exploit-db.com/exploits/42764 https://www.exploit-db.com/exploits/42765 https://www.exploit-db.com/exploits/43151 https://www.exploit-db.com/exploits/42766 Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. |