Kaspersky ID:
KLA10875
Дата обнаружения:
13/09/2016
Обновлено:
08/07/2026

Описание

Multiple serious vulnerabilities have been found in Microsoft Edge and Internet Explorer. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions or obtain sensitive information.

Below is a complete list of vulnerabilities

  1. An improper memory objects access can be exploited remotely via a specially designed content to execute arbitrary code;
  2. Lack of sandbox restrictions can be exploited remotely to gain privileges;
  3. An improper memory objects handling can be exploited remotely via a specially designed content to obtain sensitive information;
  4. An improper cross-origin requests handling can be exploited via a specially designed content to obtain sensitive information;
  5. An improper files handling can be exploited via a specially designed content to bypass security restrictions.

Первичный источник обнаружения

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Список CVE

  • CVE-2016-3247
    critical
  • CVE-2016-3291
    warning
  • CVE-2016-3292
    warning
  • CVE-2016-3294
    critical
  • CVE-2016-3295
    critical
  • CVE-2016-3370
    high
  • CVE-2016-3374
    high
  • CVE-2016-3324
    critical
  • CVE-2016-3375
    critical
  • CVE-2016-3330
    critical
  • CVE-2016-3325
    warning
  • CVE-2016-3297
    critical
  • CVE-2016-3350
    critical
  • CVE-2016-3351
    high
  • CVE-2016-3353
    critical
  • CVE-2016-3377
    critical

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!
Kaspersky IT Security Calculator:
Оцените ваш профиль кибербезопасности
Узнать больше
Встречай новый Kaspersky!
Каждая минута твоей онлайн-жизни заслуживает топовой защиты.
Узнать больше
Do you want to save your changes?
Your message has been sent successfully.