vulnerability

Microsoft Windows: CVE-2017-0049: Internet Explorer Information Disclosure Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:P/I:N/A:N)	Mar 14, 2017	Mar 14, 2017	Sep 10, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:N/A:N)

Published

Mar 14, 2017

Added

Mar 14, 2017

Modified

Sep 10, 2025

Description

The VBScript engine in Microsoft Internet Explorer 11 allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Scripting Engine Information Disclosure Vulnerability." This vulnerability is different from those described in CVE-2017-0018, and CVE-2017-0037.

Solutions

microsoft-windows-windows_10-1507-kb4012606microsoft-windows-windows_10-1511-kb4013198microsoft-windows-windows_10-1607-kb4013429microsoft-windows-windows_server_2016-1607-kb4013429msft-kb4012204-08c15f91-907c-4c57-b21e-8c3fb2b596bbmsft-kb4012204-11d8c304-ead4-405b-a3fe-4d8bbefde195msft-kb4012204-392767f0-f15f-4f4d-97b5-ed8af4fd39f8msft-kb4012204-44b0c526-edde-46e9-b82d-d89ca970102dmsft-kb4012204-48a4c019-d40c-4f79-9427-ecae23510b73msft-kb4012204-4b361c4c-88b1-4d65-b92f-b82e1e8c08afmsft-kb4012204-57271dfa-d8a5-46eb-b88e-9faba2ad8f02msft-kb4012204-80105fad-b280-4c2b-96f0-9c162afebd79msft-kb4012204-acc1e62c-5388-4bed-94e4-dd7e5b9259a2msft-kb4012204-b7d9cf1c-c1af-4b40-af7a-f5db8136915fmsft-kb4012204-c08dffeb-7076-48f6-90de-8d27c54ca6b4msft-kb4012204-ca98b8bc-20d4-4e95-a999-1464eb6c1996msft-kb4012204-d0657af6-edbe-498f-a2f1-f32b59086292msft-kb4012204-d9aaa579-8022-4612-93cd-ea879911cc09

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today