Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the Layout::MultiColumnBoxBuilder::HandleColumnBreakOnColumnSpanningElement function in mshtml.dll, which allows remote malicious users to execute arbitrary code via vectors involving a crafted Cascading Style Sheets (CSS) token sequence and crafted JavaScript code that operates on a TH element.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft edge |
||
microsoft internet explorer 11 |
Time will tell if Microsoft's browser is less ez2pwn
Security watchers have reacted positively to recently announced improvements to Microsoft's Edge browser, which had earned an unenviable reputation for easy pwnage. Redmond is reducing its exposure to malicious exploits by improving Edge's sandboxing technology. Further features have been added to existing technologies like ACG (Arbitrary Code Guard) and CIG (Code Integrity Guard) to prevent remote code execution. ACG1 and CIG2 are designed to make it harder for hackers to load malicious code in...