Lucene search

MicrosoftCVE-2016-3351

HistorySep 14, 2016 - 10:59 a.m.

CVE-2016-3351

2016-09-1410:59:24

microsoft

web.nvd.nist.gov

852

In Wild

cve

microsoft

internet explorer

edge

remote attackers

information disclosure

vulnerability

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

AI Score

4.8

Confidence

Low

EPSS

0.707

Percentile

98.1%

JSON

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to obtain sensitive information via a crafted web site, aka “Microsoft Browser Information Disclosure Vulnerability.”

Affected configurations

Nvd

Node

microsoftinternet_explorerMatch9

AND

microsoftwindows_server_2008Match-sp2

microsoftwindows_vistaMatch-sp2

Node

microsoftinternet_explorerMatch10

AND

microsoftwindows_server_2012Match-

Node

microsoftinternet_explorerMatch11-

AND

microsoftwindows_10_1507Match-

microsoftwindows_10_1511Match-

microsoftwindows_10_1607Match-

microsoftwindows_7Match-sp1

microsoftwindows_8.1Match-

microsoftwindows_rt_8.1Match-

microsoftwindows_server_2008Matchr2sp1x64

microsoftwindows_server_2012Matchr2

Node

microsoftedgeMatch-

AND

microsoftwindows_10_1507Match-

microsoftwindows_10_1511Match-

microsoftwindows_10_1607Match-

VendorProductVersionCPE
microsoftinternet_explorer9cpe:2.3:a:microsoft:internet_explorer:9:*:*:*:*:*:*:*
microsoftwindows_server_2008-cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
microsoftwindows_vista-cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*
microsoftinternet_explorer10cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*
microsoftwindows_server_2012-cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
microsoftinternet_explorer11cpe:2.3:a:microsoft:internet_explorer:11:-:*:*:*:*:*:*
microsoftwindows_10_1507-cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:*:*
microsoftwindows_10_1511-cpe:2.3:o:microsoft:windows_10_1511:-:*:*:*:*:*:*:*
microsoftwindows_10_1607-cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*
microsoftwindows_7-cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	internet_explorer	9	cpe:2.3:a:microsoft:internet_explorer:9:::::::*
microsoft	windows_server_2008	-	cpe:2.3:o:microsoft:windows_server_2008:-:sp2::::::
microsoft	windows_vista	-	cpe:2.3:o:microsoft:windows_vista:-:sp2::::::
microsoft	internet_explorer	10	cpe:2.3:a:microsoft:internet_explorer:10:::::::*
microsoft	windows_server_2012	-	cpe:2.3:o:microsoft:windows_server_2012:-:::::::*
microsoft	internet_explorer	11	cpe:2.3:a:microsoft:internet_explorer:11:-::::::
microsoft	windows_10_1507	-	cpe:2.3:o:microsoft:windows_10_1507:-:::::::*
microsoft	windows_10_1511	-	cpe:2.3:o:microsoft:windows_10_1511:-:::::::*
microsoft	windows_10_1607	-	cpe:2.3:o:microsoft:windows_10_1607:-:::::::*
microsoft	windows_7	-	cpe:2.3:o:microsoft:windows_7:-:sp1::::::