vulnerability
Microsoft Windows: CVE-2016-7202: Scripting Engine Memory Corruption Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:H/Au:N/C:C/I:C/A:C) | 11/10/2016 | 06/10/2024 | 09/03/2024 |
Severity
8
CVSS
(AV:N/AC:H/Au:N/C:C/I:C/A:C)
Published
11/10/2016
Added
06/10/2024
Modified
09/03/2024
Description
The scripting engines in Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," as demonstrated by the Chakra JavaScript engine, a different vulnerability than CVE-2016-7200, CVE-2016-7201, CVE-2016-7203, CVE-2016-7208, CVE-2016-7240, CVE-2016-7242, and CVE-2016-7243.
Solution(s)
microsoft-windows-windows_10-1507-kb3198585microsoft-windows-windows_10-1507-kb3205383microsoft-windows-windows_10-1511-kb3198586microsoft-windows-windows_10-1511-kb3205386microsoft-windows-windows_10-1607-kb3200970microsoft-windows-windows_10-1607-kb3206632microsoft-windows-windows_server_2016-1607-kb3200970microsoft-windows-windows_server_2016-1607-kb3206632
References
- BID-94042
- CVE-2016-7202
- https://attackerkb.com/topics/CVE-2016-7202
- DISA_SEVERITY-Category II
- IAVM-2016-A-0343
- MS-MS16-129
- MS-MS16-144
- URL-https://support.microsoft.com/help/3198585
- URL-https://support.microsoft.com/help/3198586
- URL-https://support.microsoft.com/help/3200970
- URL-https://support.microsoft.com/help/3205383
- URL-https://support.microsoft.com/help/3205386
- URL-https://support.microsoft.com/help/3206632
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.