CVE Number | Vulnerability | Product | Severity | Date |
---|---|---|---|---|
CVE-2017-0231 | Microsoft Browser Spoofing Vulnerability | Microsoft Edge | Important | 10-05-2017 |
Technical Information
Brief overview of the risk:
A spoofing vulnerability exists when Microsoft browsers render SmartScreen Filter. An attacker who successfully exploited this vulnerability could trick a user by redirecting the user to a specially crafted website.
Detailed Information on the risk:
To exploit the vulnerability, the user must click a specially crafted URL. In an email attack scenario, an attacker could send an email message containing the specially crafted URL to the user in an attempt to convince the user to click it.
In a web-based attack scenario, an attacker could host a specially crafted website designed to appear as a legitimate website to the user.Further information on this exploit is available at : CVE-2017-0231
Affected Software
Microsoft EdgeMicrosoft Internet Explorer 11