JSON View XML View

Key Value
MTID M116328
Title (MS16-145) Microsoft Edge Scripting Engine Remote Code Execution IV (3204062)
Description A vulnerability in some versions of Microsoft Edge could lead to remote code execution.
Observation A vulnerability in some versions of Microsoft Edge could lead to remote code execution.

The flaw lies in the Scripting Engine component. Successful exploitation by a remote attacker could result in the execution of arbitrary code. The exploit requires the user to open a vulnerable website, email or document.
Recommendation The vendor has released an update to address this issue.

https://technet.microsoft.com/library/security/MS16-145

Superseded patch information:

Bulletin is completely superseded by patches provided in: MS17-001

https://technet.microsoft.com/library/security/MS17-001

Vendor Microsoft
Attack Vector Website or e-mail with malicious content
Importance 7
Impact 10.00084536000
Threat Score 7.61
Labels
Patch Tuesday
References
CVECVE-2016-7296
MSFTBulletinMS16-145
MSFTQNumber3204062
DISA IAVA2016-A-0344
MTIDM116328
CPEs
cpe:/a:microsoft:edge
Created At 2016-12-13 00:00:00 UTC
Updated At 2017-02-16 15:09:53 UTC

Back