JSON View XML View

Key Value
MTID M115549
Title (MS16-142) Microsoft Internet Explorer Browser Memory Corruption Information Disclosure IV (3198467)
Description A vulnerability in some versions of Microsoft Internet Explorer could lead to information disclosure.
Observation A vulnerability in some versions of Microsoft Internet Explorer could lead to information disclosure.

The flaw lies in the Browser component. Successful exploitation by a remote attacker could result in the disclosure of sensitive information. The exploit requires the user to open a vulnerable website, email or document.
Recommendation The vendor has released an update to address this issue.

https://technet.microsoft.com/library/security/MS16-142

Superseded patch information:

The patches for the following products are superseded by patches provided in: MS16-144
- Cumulative Update for Windows 10 (KB3205383): KB3205383
- Cumulative Update for Windows 10 for x64-based Systems (KB3205383): KB3205383
- Cumulative Update for Windows 10 Version 1511 (KB3205386): KB3205386
- Cumulative Update for Windows 10 Version 1511 for x64-based Systems (KB3205386): KB3205386
- Cumulative Update for Windows 10 Version 1607 (KB3206632): KB3206632
- Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB3206632): KB3206632
- Cumulative Update for Windows Server 2016 for x64-based Systems (KB3206632): KB3206632
- Cumulative Update for Windows Server 2016 Technical Preview 5 for x64-based Systems (KB3207296): KB3207296
- December, 2016 Security Monthly Quality Rollup for Windows 8.1 (KB3205401): KB3205401
- December, 2016 Security Monthly Quality Rollup for Windows 8.1 for x64-based Systems (KB3205401): KB3205401
- December, 2016 Security Monthly Quality Rollup for Windows Server 2012 (KB3205409): KB3205409
- December, 2016 Security Monthly Quality Rollup for Windows Server 2012 R2 (KB3205401): KB3205401
- Microsoft Internet Explorer 8 for WES09 and POSReady 2009: KB3203621
- Microsoft Internet Explorer 9 for Windows Server 2008: KB3203621
- Microsoft Internet Explorer 9 for Windows Server 2008 for x64-based Systems: KB3203621
- Microsoft Internet Explorer 9 for Windows Vista: KB3203621
- Microsoft Internet Explorer 9 for Windows Vista for x64-based Systems: KB3203621

The patches for the following products are superseded by patches provided in: MS17-004
- January, 2017 Security Monthly Quality Rollup for Windows 7 (KB3212646): KB3212646
- January, 2017 Security Monthly Quality Rollup for Windows 7 for x64-based Systems (KB3212646): KB3212646
- January, 2017 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems (KB3212646): KB3212646

https://technet.microsoft.com/library/security/MS16-144
https://technet.microsoft.com/library/security/MS17-004

Vendor Microsoft
Attack Vector Website or e-mail with malicious content
Importance 5
Impact 2.8627500
Threat Score 2.57
Labels
Patch Tuesday
References
CVECVE-2016-7199
MSFTBulletinMS16-142
MSFTQNumber3198467
DISA IAVA2016-A-0312
MTIDM115549
CPEs
cpe:/a:microsoft:ie:11
Created At 2016-11-08 00:00:00 UTC
Updated At 2017-02-16 15:09:49 UTC

Back