Microsoft Internet Explorer Cumulative Security Update

Last Update Date: 15 Jan 2016 Release Date: 13 Jan 2016 3213 Views

RISK: High Risk

High Risk

TYPE: Clients - Browsers

TYPE: Browsers
  1. Scripting Engine Memory Corruption Vulnerability
    A remote code execution vulnerability exists in the way that the VBScript engine renders when handling objects in memory in Internet Explorer. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
  2. Internet Explorer Elevation of Privilege Vulnerability
    An elevation of privilege vulnerability exists when Internet Explorer does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain. The update addresses the vulnerability by helping to ensure that cross-domain policies are properly enforced in Internet Explorer.

Impact

  • Elevation of Privilege
  • Remote Code Execution

System / Technologies affected

  • Internet Explorer 7
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10
  • Internet Explorer 11

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Fortinet FortiGate/FortiOS Remote Users Access Vulnerability

14 Jan 2016 3388 Views

Next

Microsoft Edge Cumulative Security Update

13 Jan 2016 3037 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY