BROWSER-IE Microsoft Internet Explorer CHtmlTab use after free attempt
Microsoft Internet Explorer 10 and 11 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability." This vulnerability is different from those described in CVE-2017-0037 and CVE-2017-0149.
CVSS base score 7.5
CVSS impact score 5.9
CVSS exploitability score 1.6
- microsoft internet_explorer 10
- microsoft internet_explorer 11
Ease of attack
Upgrade to the latest non-affected version of the software.
Apply the appropriate vendor supplied patches.
- Talos research team.
- This document was generated from data supplied by the national vulnerability database, a product of the national institute of standards and technology.
- For more information see nvd.