JSON View XML View

Key Value
MTID M114957
Title (MS16-119) Microsoft Edge Browser Credential Data Information Disclosure (3192890)
Description A vulnerability in some versions of Microsoft Edge could lead to information disclosure.
Observation A vulnerability in some versions of Microsoft Edge could lead to information disclosure.

The flaw occurs when Microsoft Browsers leave credential data in memory. Successful exploitation by a remote attacker could result in the disclosure of sensitive information.
Recommendation The vendor has released an update to address this issue.

https://technet.microsoft.com/library/security/MS16-119

Superseded patch information:

The patches for the following products are superseded by patches provided in: MS16-142
- Cumulative Update for Windows 10 (KB3198585): KB3198585
- Cumulative Update for Windows 10 Version 1511 (KB3198586): KB3198586
- Cumulative Update for Windows 10 Version 1511 for x64-based Systems (KB3198586): KB3198586
- Cumulative Update for Windows 10 Version 1607 (KB3200970): KB3200970

https://technet.microsoft.com/library/security/MS16-142

Vendor Microsoft
Attack Vector Local Application
Importance 2
Impact 2.8627500
Threat Score 2.57
Labels
Patch Tuesday
References
CVECVE-2016-3391
MSFTBulletinMS16-119
MSFTQNumber3192890
DISA IAVA2016-A-0277
MTIDM114957
CPEs
cpe:/a:microsoft:edge
Created At 2016-10-11 00:00:00 UTC
Updated At 2016-11-19 10:31:35 UTC

Back