Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA10967
HistoryMar 14, 2017 - 12:00 a.m.

KLA10967 Multiple vulnerabilities in Microsoft Browser

2017-03-1400:00:00
Kaspersky Lab
threats.kaspersky.com
79

CVSS2

7.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.9

Confidence

High

EPSS

0.969

Percentile

99.8%

JSON

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, execute arbitrary code, spoof user interface.

Below is a complete list of vulnerabilities:

  1. An information disclosure vulnerability in Microsoft Browser can be exploited remotely via specially crafted content to obtain sensitive information.
  2. A security feature bypass vulnerability in Microsoft Edge can be exploited remotely via specially crafted website to bypass security restrictions.
  3. A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to execute arbitrary code.
  4. An information disclosure vulnerability in Microsoft Edge based on Edge HTML can be exploited remotely via specially crafted content to obtain sensitive information.
  5. A spoofing vulnerability in Microsoft Browser can be exploited remotely via specially crafted website to spoof user interface.
  6. A memory corruption vulnerability in Microsoft Browser can be exploited remotely via specially crafted website to execute arbitrary code.
  7. An information disclosure vulnerability in Scripting Engine can be exploited remotely via specially crafted content to execute arbitrary code.
  8. A memory corruption vulnerability in Microsoft Edge can be exploited remotely via specially crafted website to execute arbitrary code.
  9. A remote code execution vulnerability in Windows PDF can be exploited remotely via specially crafted website to execute arbitrary code.
  10. An information disclosure vulnerability in Internet Explorer can be exploited remotely via specially crafted content to obtain sensitive information.
  11. An elevation of privilege vulnerability in Internet Explorer can be exploited remotely via specially crafted content to obtain sensitive information.

Original advisories

CVE-2017-0065

CVE-2017-0066

CVE-2017-0067

CVE-2017-0068

CVE-2017-0069

CVE-2017-0070

CVE-2017-0071

CVE-2017-0094

CVE-2017-0037

CVE-2017-0131

CVE-2017-0132

CVE-2017-0133

CVE-2017-0134

CVE-2017-0135

CVE-2017-0136

CVE-2017-0137

CVE-2017-0138

CVE-2017-0140

CVE-2017-0141

CVE-2017-0150

CVE-2017-0151

CVE-2017-0009

CVE-2017-0010

CVE-2017-0011

CVE-2017-0012

CVE-2017-0015

CVE-2017-0017

CVE-2017-0023

CVE-2017-0032

CVE-2017-0033

CVE-2017-0034

CVE-2017-0035

CVE-2017-0049

CVE-2017-0059

CVE-2017-0130

CVE-2017-0149

CVE-2017-0154

CVE-2017-0008

CVE-2017-0018

CVE-2017-0040

Exploitation

The following public exploits exists for this vulnerability:

https://www.exploit-db.com/exploits/41623

https://www.exploit-db.com/exploits/43125

https://www.exploit-db.com/exploits/41454

https://www.exploit-db.com/exploits/42354

https://www.exploit-db.com/exploits/43125

https://www.exploit-db.com/exploits/41661

Related products

Microsoft-Internet-Explorer

Microsoft-Edge

CVE list

CVE-2017-0065 warning

CVE-2017-0066 warning

CVE-2017-0067 unknown

CVE-2017-0068 warning

CVE-2017-0069 warning

CVE-2017-0070 unknown

CVE-2017-0071 unknown

CVE-2017-0094 unknown

CVE-2017-0037 critical

CVE-2017-0131 unknown

CVE-2017-0132 unknown

CVE-2017-0133 unknown

CVE-2017-0134 unknown

CVE-2017-0135 warning

CVE-2017-0136 unknown

CVE-2017-0137 unknown

CVE-2017-0138 unknown

CVE-2017-0140 warning

CVE-2017-0141 unknown

CVE-2017-0150 unknown

CVE-2017-0151 unknown

CVE-2017-0009 warning

CVE-2017-0010 unknown

CVE-2017-0011 warning

CVE-2017-0012 warning

CVE-2017-0015 unknown

CVE-2017-0017 warning

CVE-2017-0023 critical

CVE-2017-0032 unknown

CVE-2017-0033 warning

CVE-2017-0034 unknown

CVE-2017-0035 unknown

CVE-2017-0049 warning

CVE-2017-0059 warning

CVE-2017-0130 critical

CVE-2017-0149 critical

CVE-2017-0154 high

CVE-2017-0008 warning

CVE-2017-0018 critical

CVE-2017-0040 critical

KB list

4025342

4012204

4012217

4012215

4012216

4012606

4013198

4013429

4025339

4025344

4025338

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Impacts

  • ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

  • OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

  • SB

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

  • SUI

Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.

Affected Products

  • Internet Explorer 9Internet Explorer 11Internet Explorer 10Microsoft Edge (EdgeHTML-based)

References

Related

nessus 2
openvas 2
kaspersky 1
mskb 6
prion 36
veracode 15
cvelist 36
cve 36
nvd 36
threatpost 1
attackerkb 3
saint 3
exploitdb 2
zdi 3
symantec 6
checkpoint_advisories 4
mscve 5
seebug 1
zdt 1
nessus
nessus
MS17-007: Cumulative Security Update for Microsoft Edge (4013071)
2017-03-14 00:00:00
MS17-006: Cumulative Security Update for Internet Explorer (4013073)
2017-03-14 00:00:00
openvas
openvas
Microsoft Edge Multiple Vulnerabilities (4013071)
2017-03-15 00:00:00
Microsoft Internet Explorer Multiple Vulnerabilities (4013073)
2017-03-15 00:00:00
kaspersky
kaspersky
KLA10968 Multiple vulnerabilities in Microsoft Edge
2017-03-14 00:00:00
mskb
mskb
MS17-007: Cumulative security update for Microsoft Edge: March 14, 2017
2017-03-14 00:00:00
MS17-006: Cumulative security update for Internet Explorer: March 14, 2017
2017-03-14 00:00:00
MS17-006: Security update for Internet Explorer: March 14, 2017
2017-03-14 07:00:00
prion
prion
Remote code execution
2017-03-17 00:59:00
Remote code execution
2017-03-17 00:59:00
Remote code execution
2017-03-17 00:59:00
veracode
veracode
Remote Code Execution (RCE)
2018-12-05 01:15:39
Remote Code Execution (RCE)
2018-12-05 02:43:23
Remote Code Execution (RCE)
2018-12-05 01:42:51
cvelist
cvelist
CVE-2017-0138
2017-03-17 00:00:00
CVE-2017-0035
2017-03-17 00:00:00
CVE-2017-0134
2017-03-17 00:00:00
cve
cve
CVE-2017-0133
2017-03-17 00:59:03
CVE-2017-0138
2017-03-17 00:59:03
CVE-2017-0136
2017-03-17 00:59:03
nvd
nvd
CVE-2017-0070
2017-03-17 00:59:01
CVE-2017-0136
2017-03-17 00:59:03
CVE-2017-0141
2017-03-17 00:59:03
threatpost
threatpost
Patch Tuesday Returns; Microsoft Quiet on Postponement
2017-03-14 15:26:24
attackerkb
attackerkb
CVE-2017-0149
2017-03-17 00:00:00
CVE-2017-0018
2017-03-17 00:00:00
CVE-2017-0059
2017-03-17 00:00:00
saint
saint
Internet Explorer mshtml.dll Memory Corruption Vulnerability
2017-08-01 00:00:00
Internet Explorer mshtml.dll Memory Corruption Vulnerability
2017-08-01 00:00:00
Internet Explorer mshtml.dll Memory Corruption Vulnerability
2017-08-01 00:00:00
exploitdb
exploitdb
Microsoft Internet Explorer 11 (Windows 7 x86) - 'mshtml.dll' Remote Code Execution (MS17-007)
2017-10-17 00:00:00
Microsoft Internet Explorer - 'mshtml.dll' Remote Code Execution (MS17-007)
2017-07-24 00:00:00
zdi
zdi
Microsoft Internet Explorer CHtmTag Use-After-Free Remote Code Execution Vulnerability
2017-03-21 00:00:00
Microsoft Edge CTransitionValues Out-Of-Bounds Read Information Disclosure Vulnerability
2017-03-21 00:00:00
Microsoft Windows JavaScript Spread Operator Stack-based Buffer Overflow Remote Code Execution Vulnerability
2017-03-21 00:00:00
symantec
symantec
Microsoft Edge CVE-2017-0141 Scripting Engine Remote Memory Corruption Vulnerability
2017-03-14 00:00:00
Microsoft Edge CVE-2017-0011 Information Disclosure Vulnerability
2017-03-14 00:00:00
Microsoft Edge CVE-2017-0032 Scripting Engine Remote Memory Corruption Vulnerability
2017-03-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Edge Scripting Engine Memory Corruption (MS17-007: CVE-2017-0141)
2017-03-14 00:00:00
Microsoft Edge Information Disclosure (MS17-007: CVE-2017-0011)
2017-03-14 00:00:00
Microsoft Internet Explorer Memory Corruption (MS17-006: CVE-2017-0018)
2017-03-14 00:00:00
mscve
mscve
Scripting Engine Memory Corruption Vulnerability
2017-03-14 07:00:00
Microsoft Browser Information Disclosure Vulnerability
2017-03-14 07:00:00
Microsoft Browser Memory Corruption Vulnerability
2017-03-14 07:00:00
seebug
seebug
Microsoft Edge Fetch API allows setting of arbitrary request headers (CVE-2017-0140)
2017-03-15 00:00:00
zdt
zdt
Microsoft Edge Fetch API Arbitrary Header Setting Vulnerability
2017-03-15 00:00:00

CVSS2

7.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.9

Confidence

High

EPSS

0.969

Percentile

99.8%

JSON
Related for KLA10967
nessus2openvas2kaspersky1mskb6prion36veracode15cvelist36cve36nvd36threatpost1attackerkb3saint3exploitdb2zdi3symantec6checkpoint_advisories4mscve5seebug1zdt1