Lucene search
Kai Song(exp-sky) of Tencent's Xuanwu LabZDI-17-169HistoryMar 21, 2017 - 12:00 a.m.
Microsoft Internet Explorer CHtmTag Use-After-Free Remote Code Execution Vulnerability
2017-03-2100:00:00
Kai Song(exp-sky) of Tencent's Xuanwu Lab
www.zerodayinitiative.com
13
0.207 Low
EPSS
Percentile
96.4%
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of HTML tags. By manipulating a documentâs elements an attacker can cause a pointer to be reused after it has been freed. An attacker can leverage this vulnerability to disclose sensitive information under the context of the current process.
Related
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Memory Corruption (MS17-006: CVE-2017-0018)
2017-03-14 00:00:00
mscve
mscve
Microsoft Browser Memory Corruption Vulnerability
2017-03-14 07:00:00
symantec
symantec
cve
cve
cvelist
cvelist
nvd
nvd
prion
prion
Memory corruption
2017-03-17 00:59:00
Memory corruption
2017-03-17 00:59:00
Information disclosure
2017-03-17 00:59:00
attackerkb
attackerkb
CVE-2017-0149
2017-03-17 00:00:00
CVE-2017-0018
2017-03-17 00:00:00
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (4013073)
2017-03-15 00:00:00
nessus
nessus
MS17-006: Cumulative Security Update for Internet Explorer (4013073)
2017-03-14 00:00:00
mskb
mskb
MS17-006: Security update for Internet Explorer: March 14, 2017
2017-03-14 07:00:00
MS17-006: Cumulative security update for Internet Explorer: March 14, 2017
2017-03-14 00:00:00
March 2017 Security Monthly Quality Rollup for Windows Server 2012
2017-03-14 07:00:00
kaspersky
kaspersky
KLA10967 Multiple vulnerabilities in Microsoft Browser
2017-03-14 00:00:00