Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv3

CVE-2017-0059

Published: 17/03/2017 Updated: 19/11/2017
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8
VMScore: 445
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N

Vulnerability Summary

Microsoft Internet Explorer 9 through 11 allow remote malicious users to obtain sensitive information from process memory via a crafted web site, aka "Internet Explorer Information Disclosure Vulnerability." This vulnerability is different from those described in CVE-2017-0008 and CVE-2017-0009.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft internet explorer 11

microsoft internet explorer 9

microsoft internet explorer 10

Vendor Advisories

HP: SUPPORT COMMUNICATION- SECURITY BULLETIN HPSBPI03563 rev 1 - SMTP Credentials Vulnerability for HP Designjet and HP Latex printers
HP has identified a potential security vulnerability with some HP Designjet and HP Latex printers that may expose the credentials of the SMTP server configured to receive and process emails generated by the printers ...
HP: SUPPORT COMMUNICATION- SECURITY BULLETIN HPSBPI03563 rev 1 - SMTP Credentials Vulnerability for HP Designjet and HP Latex printers
HP has identified a potential security vulnerability with some HP Designjet and HP Latex printers that may expose the credentials of the SMTP server configured to receive and process emails generated by the printers ...

Exploits

Exploit DB: Microsoft Internet Explorer 11 (Windows 7 x86) - 'mshtml.dll' Remote Code Execution (MS17-007)
<!DOCTYPE html> <html> <head> <style> class1 { float: left; column-count: 5; } class2 { column-span: all; columns: 1px; } table {border-spacing: 0px;} </style> <script> var ntdllBase = ""; function infoleak() { var textarea = documentgetElementById( ...
Exploit DB: Microsoft Internet Explorer 11 - 'textarea.defaultValue' Memory Disclosure (MS17-006)
<!-- Source: bugschromiumorg/p/project-zero/issues/detail?id=1076 There is an use-after-free bug in IE which can lead to info leak / memory disclosure The bug was confirmed on Internet Explorer version 110960018537 (update version 11038) PoC: ========================================= --> <!-- saved from url=(0014)about: ...
Exploit DB: Microsoft Internet Explorer - 'mshtml.dll' Remote Code Execution (MS17-007)
<!DOCTYPE html> <html> <head> <style> class1 { float: left; column-count: 5; } class2 { column-span: all; columns: 1px; } table {border-spacing: 0px;} </style> <script> var base_leaked_addr = ""; function infoleak() { var textarea = documentgetEleme ...

References

CWE-200https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0059http://www.securityfocus.com/bid/96645http://www.securitytracker.com/id/1038008https://www.exploit-db.com/exploits/42354/https://www.exploit-db.com/exploits/41661/https://www.exploit-db.com/exploits/43125/https://nvd.nist.govhttps://www.exploit-db.com/exploits/43125/https://support.hp.com/us-en/document/c05624457
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypassCVE-2024-30043cameraCVE-2023-40404CVE-2024-2793client sideCVE-2024-4469CVE-2024-3565CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook