Kaspersky Threats

Detect date

?

11/14/2017

Severity

?

High

Description

Multiple serious vulnerabilities have been found in Microsoft Edge and Internet Explorer. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions and obtain sensitive information.

Affected products

Microsoft Edge
Internet Explorer 9
Internet Explorer 10
Internet Explorer 11

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

CVE-2017-11791
CVE-2017-11803
CVE-2017-11827
CVE-2017-11833
CVE-2017-11834
CVE-2017-11836
CVE-2017-11837
CVE-2017-11838
CVE-2017-11839
CVE-2017-11840
CVE-2017-11841
CVE-2017-11843
CVE-2017-11844
CVE-2017-11845
CVE-2017-11846
CVE-2017-11848
CVE-2017-11855
CVE-2017-11856
CVE-2017-11858
CVE-2017-11861
CVE-2017-11862
CVE-2017-11863
CVE-2017-11866
CVE-2017-11869
CVE-2017-11870
CVE-2017-11871
CVE-2017-11872
CVE-2017-11873
CVE-2017-11874

Impacts

?

ACE

[?]

OSI

[?]

SB

[?]

Related products

Microsoft Internet Explorer
Microsoft Edge

CVE-IDS

?

Microsoft official advisories

Microsoft Security Update Guide

KB list

4042895
4048955
4048952
4048953
4048954
4048956
4048957
4048958
4048959
4047206

Exploitation

The following public exploits exists for this vulnerability:

https://www.exploit-db.com/exploits/43180

https://www.exploit-db.com/exploits/43183

https://www.exploit-db.com/exploits/43181

https://www.exploit-db.com/exploits/43371

https://www.exploit-db.com/exploits/43153

https://www.exploit-db.com/exploits/43182

https://www.exploit-db.com/exploits/43154

Find out the statistics of the vulnerabilities spreading in your region

Detect date ?	11/14/2017
Severity ?	High
Description	Multiple serious vulnerabilities have been found in Microsoft Edge and Internet Explorer. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions and obtain sensitive information.
Affected products	Microsoft Edge Internet Explorer 9 Internet Explorer 10 Internet Explorer 11
Solution	Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Original advisories	CVE-2017-11791 CVE-2017-11803 CVE-2017-11827 CVE-2017-11833 CVE-2017-11834 CVE-2017-11836 CVE-2017-11837 CVE-2017-11838 CVE-2017-11839 CVE-2017-11840 CVE-2017-11841 CVE-2017-11843 CVE-2017-11844 CVE-2017-11845 CVE-2017-11846 CVE-2017-11848 CVE-2017-11855 CVE-2017-11856 CVE-2017-11858 CVE-2017-11861 CVE-2017-11862 CVE-2017-11863 CVE-2017-11866 CVE-2017-11869 CVE-2017-11870 CVE-2017-11871 CVE-2017-11872 CVE-2017-11873 CVE-2017-11874
Impacts ?	ACE [?] OSI [?] SB [?]
Related products	Microsoft Internet Explorer Microsoft Edge
CVE-IDS ?	CVE-2017-117912.6Warning CVE-2017-118034.3Warning CVE-2017-118279.3Critical CVE-2017-118332.6Warning CVE-2017-118342.6Warning CVE-2017-118367.6Critical CVE-2017-118377.6Critical CVE-2017-118387.6Critical CVE-2017-118397.6Critical CVE-2017-118407.6Critical CVE-2017-118417.6Critical CVE-2017-118437.6Critical CVE-2017-118444.3Warning CVE-2017-118457.6Critical CVE-2017-118467.5Critical CVE-2017-118484.3Warning CVE-2017-118557.6Critical CVE-2017-118567.6Critical CVE-2017-118587.6Critical CVE-2017-118617.6Critical CVE-2017-118627.6Critical CVE-2017-118634.3Warning CVE-2017-118667.6Critical CVE-2017-118697.6Critical CVE-2017-118707.6Critical CVE-2017-118717.6Critical CVE-2017-118724.3Warning CVE-2017-118737.6Critical CVE-2017-118742.6Warning
Microsoft official advisories	Microsoft Security Update Guide
KB list	4042895 4048955 4048952 4048953 4048954 4048956 4048957 4048958 4048959 4047206
Exploitation	The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/43180 https://www.exploit-db.com/exploits/43183 https://www.exploit-db.com/exploits/43181 https://www.exploit-db.com/exploits/43371 https://www.exploit-db.com/exploits/43153 https://www.exploit-db.com/exploits/43182 https://www.exploit-db.com/exploits/43154
	Find out the statistics of the vulnerabilities spreading in your region

KLA11140Multiple vulnerabilities in Microsoft Edge and Internet Explorer

KLA11140
Multiple vulnerabilities in Microsoft Edge and Internet Explorer