JSON View XML View

Key Value
MTID M116314
Title (MS16-144) Microsoft Internet Explorer Browser Security Bypass (3204059)
Description A vulnerability in some versions of Microsoft Internet Explorer could lead to security bypass.
Observation A vulnerability in some versions of Microsoft Internet Explorer could lead to security bypass.

The flaw lies in the Browser component. Successful exploitation by a remote attacker could result in the bypass of intended access restrictions. The exploit requires the user to open a vulnerable website, email or document.
Recommendation The vendor has released an update to address this issue.

https://technet.microsoft.com/library/security/MS16-144

Superseded patch information:

The patches for the following products are superseded by patches provided in: MS17-001
- Cumulative Update for Windows 10 (KB3210720): KB3210720
- Cumulative Update for Windows 10 for x64-based Systems (KB3210720): KB3210720
- Cumulative Update for Windows 10 Version 1511 (KB3210721): KB3210721
- Cumulative Update for Windows 10 Version 1511 for x64-based Systems (KB3210721): KB3210721
- Cumulative Update for Windows 10 Version 1607 (KB3213986): KB3213986
- Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB3213986): KB3213986
- Cumulative Update for Windows Server 2016 for x64-based Systems (KB3213986): KB3213986

The patches for the following products are superseded by patches provided in: MS17-004
- January, 2017 Security Monthly Quality Rollup for Windows 7 (KB3212646): KB3212646
- January, 2017 Security Monthly Quality Rollup for Windows 7 for x64-based Systems (KB3212646): KB3212646
- January, 2017 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems (KB3212646): KB3212646

https://technet.microsoft.com/library/security/MS17-001
https://technet.microsoft.com/library/security/MS17-004

Vendor Microsoft
Attack Vector Website or e-mail with malicious content
Importance 5
Impact 2.8627500
Threat Score 2.57
Labels
Patch Tuesday
References
CVECVE-2016-7281
MSFTBulletinMS16-144
MSFTQNumber3204059
DISA IAVA2016-A-0343
MTIDM116314
CPEs
cpe:/a:microsoft:ie:11
Created At 2016-12-13 00:00:00 UTC
Updated At 2017-02-16 15:09:52 UTC

Back