Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv3

CVE-2016-3247

Published: 14/09/2016 Updated: 12/10/2018
CVSS v2 Base Score: 5.1 | Impact Score: 6.4 | Exploitability Score: 4.9
CVSS v3 Base Score: 7.5 | Impact Score: 5.9 | Exploitability Score: 1.6
VMScore: 515
Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

Vulnerability Summary

Microsoft Internet Explorer 11 and Microsoft Edge allow remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability."

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft edge -

microsoft internet explorer 11

Exploits

Exploit DB: Microsoft Edge - 'CText­Extractor::Get­Block­Text' Out-of-Bounds Read (MS16-104)
<!-- Source: blogskylinednl/20161118002html Synopsis A specially crafted web-page can cause an integer underflow in Microsoft Edge This causes CText­Extractor::Get­Block­Text to read data outside of the bounds of a memory block Known affected software, attack vectors and mitigations Microsoft Edge 1101024016384 An attacker ...
Exploit DB: Microsoft Edge CTextExtractor::GetBlockText Out-Of-Bounds Read
A specially crafted web-page can cause an integer underflow in Microsoft Edge This causes CTextExtractor::GetBlockText to read data outside of the bounds of a memory block ...

References

NVD-CWE-noinfohttp://www.securityfocus.com/bid/92828http://seclists.org/fulldisclosure/2016/Nov/111http://blog.skylined.nl/20161118002.htmlhttp://www.securitytracker.com/id/1036789http://www.securitytracker.com/id/1036788https://www.exploit-db.com/exploits/40797/http://www.securityfocus.com/archive/1/539779/100/0/threadedhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-105https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-104https://nvd.nist.govhttps://www.exploit-db.com/exploits/40797/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
injectCVE-2024-34001CVE-2024-37018LFICVE-2024-1275CVE-2024-1086CSRFCVE-2024-31030CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook