New Search

Microsoft Browser Memory Corruption Vulnerability - CVE-2016-7199 (MS16-129/MS16-142)

oval:org.cisecurity:def:1421

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to bypass the Same Origin Policy and obtain sensitive window-state information via a crafted web site aka "Microsoft Browser Information Disclosure Vulnerability.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2012
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows Server 2008
  • Microsoft Windows 8.1
  • Microsoft Windows 7
  • Microsoft Windows 10
  • Microsoft Windows Server 2016
  • Microsoft Windows Vista
  • Microsoft Windows Server 2012 R2
Class:
vulnerability
Reference(s):
  • CVE-2016-7199
Product(s):
  • Microsoft Internet Explorer 9
  • Microsoft Edge
  • Microsoft Internet Explorer 11
  • Microsoft Internet Explorer 10