| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| MS16-037 | Cumulative Security Update for Internet Explorer (3148531) | Internet Explorer | Critical | 13-04-2016 |
Technical Information
Brief overview of the risk:
Multiple remote code execution vulnerabilities exist when Internet Explorer improperly accesses objects in memory. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.
Detailed Information on the risk:
A remote code execution vulnerability exists when Internet Explorer improperly validates input before loading dynamic link library (DLL) files. An attacker who successfully exploited this vulnerability could take control of an affected system. To exploit the vulnerability, an attacker would first have to log on to the target system and then run a specially crafted application.
Internet Explorer 9Further information on this exploit is available at : MS16-037
Internet Explorer 10
Internet Explorer 11
Affected Software
Internet Explorer 9Internet Explorer 10
Internet Explorer 11