Multiple vulnerabilities in Microsoft Browsers

Описание

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. A memory corruption vulnerability in Microsoft Browser can be exploited remotely via specially crafted website to execute arbitrary code.
2. A memory corruption vulnerability in Microsoft Edge can be exploited remotely via specially crafted website to execute arbitrary code.
3. An elevation of privilege vulnerability in Microsoft Edge can be exploited remotely via specially crafted content to gain privileges.
4. A remote code execution vulnerability in DLL Loading can be exploited remotely via specially crafted application to execute arbitrary code.
5. An information disclosure vulnerability in Internet Explorer can be exploited remotely via specially crafted content to obtain sensitive information.
6. A memory corruption vulnerability in Internet Explorer can be exploited remotely via specially crafted website to execute arbitrary code.

Первичный источник обнаружения

• CVE-2016-0154
  CVE-2016-0155
  CVE-2016-0156
  CVE-2016-0157
  CVE-2016-0158
  CVE-2016-0160
  CVE-2016-0161
  CVE-2016-0162
  CVE-2016-0164
  CVE-2016-0166
  

Связанные продукты

• Microsoft-Internet-Explorer
• Microsoft-Edge

Список CVE

• CVE-2016-0154
  critical
• CVE-2016-0155
  critical
• CVE-2016-0156
  critical
• CVE-2016-0157
  critical
• CVE-2016-0158
  warning
• CVE-2016-0160
  high
• CVE-2016-0161
  warning
• CVE-2016-0162
  warning
• CVE-2016-0164
  critical
• CVE-2016-0166
  critical

Список KB

• 3147461
• 3147458
• 3148198
• 4015549
• 4015550
• 4015221
• 4014661
• 4015551
• 4015219

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com