vulnerability

Microsoft Windows: CVE-2016-3271: Windows Scripting Engine Memory Corruption Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:P/I:N/A:N)	Jul 13, 2016	Jun 10, 2024	May 8, 2026

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:N/A:N)

Published

Jul 13, 2016

Added

Jun 10, 2024

Modified

May 8, 2026

Description

The VBScript engine in Microsoft Edge allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Scripting Engine Information Disclosure Vulnerability."

Solution

microsoft-windows-windows_10-1511-kb3172985

References

CVE-2016-3271
https://attackerkb.com/topics/CVE-2016-3271
CWE-200
EUVD-EUVD-2016-4304
https://euvd.enisa.europa.eu/vulnerability/EUVD-2016-4304
https://support.microsoft.com/help/3172985

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report