Published: 12/04/2017 Updated: 03/10/2019

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

An elevation of privilege vulnerability exists when Internet Explorer does not properly enforce cross-domain policies, which could allow an malicious user to access information from one domain and inject it into another domain, aka "Internet Explorer Elevation of Privilege Vulnerability."

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft internet explorer 11
microsoft internet explorer 10

Cowardly Microsoft buries critical Hyper-V, WordPad, Office, Outlook, etc security patches in normal fixes

The Register • Shaun Nichols in San Francisco • 11 Apr 2017

Patch Tuesday shakeup sucks

Microsoft today buried among minor bug fixes patches for critical security flaws that can be exploited by attackers to hijack vulnerable computers. In a massive shakeup of its monthly Patch Tuesday updates, the Windows giant has done away with its easy-to-understand lists of security fixes published on TechNet – and instead scattered details of changes across a new portal: Microsoft's Security Update Guide. Billed by Redmond as "the authoritative source of information on our security updates,"...

CVE-2017-0210

Vulnerability Summary

Vulnerability Trend

Recent Articles

References

Vulmon Search

About

Products

Connect