KLA10771
Multiple vulnerabilities in Microsoft Internet Explorer and Edge
Обновлено: 17/06/2019
Дата обнаружения
08/03/2016
Уровень угрозы
High
Описание

Multiple serious vulnerabilities have been found in Microsoft Internet Explorer & Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code or obtain sensitive information.

Below is a complete list of vulnerabilities

  1. An improper memory objects access can be exploited remotely via a specially designed website to execute arbitrary code;
  2. An improper referrer policy handling can be exploited remotely via a specially designed website to obtain sensitive information.
Пораженные продукты

Microsoft Internet Explorer versions from 9 through 11
Microsoft Edge

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
CVE-2016-0130
CVE-2016-0129
CVE-2016-0125
CVE-2016-0124
CVE-2016-0123
CVE-2016-0107
CVE-2016-0103
CVE-2016-0113
CVE-2016-0114
CVE-2016-0111
CVE-2016-0112
CVE-2016-0102
CVE-2016-0110
CVE-2016-0104
CVE-2016-0108
CVE-2016-0106
CVE-2016-0105
CVE-2016-0109
CVE-2016-0116
Оказываемое влияние
?
ACE 
[?]

OSI 
[?]
Связанные продукты
Microsoft Internet Explorer
Microsoft Edge
CVE-IDS
CVE-2016-01307.6Critical
CVE-2016-01297.6Critical
CVE-2016-01252.6Warning
CVE-2016-01247.6Critical
CVE-2016-01237.6Critical
CVE-2016-01077.6Critical
CVE-2016-01037.6Critical
CVE-2016-01137.6Critical
CVE-2016-01147.6Critical
CVE-2016-01117.6Critical
CVE-2016-01127.6Critical
CVE-2016-01027.6Critical
CVE-2016-01107.6Critical
CVE-2016-01047.6Critical
CVE-2016-01087.6Critical
CVE-2016-01067.6Critical
CVE-2016-01057.6Critical
CVE-2016-01097.6Critical
CVE-2016-01167.6Critical
Microsoft official advisories
Microsoft Security Update Guide
KB list

3140768
3140745
3142019
3142015
3139929