Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMicrosoftCVE-2016-0061
HistoryFeb 10, 2016 - 11:59 a.m.

CVE-2016-0061

2016-02-1011:59:24
CWE-119
microsoft
web.nvd.nist.gov
38
cve-2016-0061
microsoft
internet explorer
edge
remote code execution
memory corruption
web security

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

0.935

Percentile

99.2%

JSON

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka “Microsoft Browser Memory Corruption Vulnerability,” a different vulnerability than CVE-2016-0060, CVE-2016-0063, CVE-2016-0067, and CVE-2016-0072.

Affected configurations

Nvd
Node
microsoftedgeMatch-
OR
microsoftinternet_explorerMatch9
OR
microsoftinternet_explorerMatch10
OR
microsoftinternet_explorerMatch11-
VendorProductVersionCPE
microsoftedge-cpe:2.3:a:microsoft:edge:-:*:*:*:*:*:*:*
microsoftinternet_explorer9cpe:2.3:a:microsoft:internet_explorer:9:*:*:*:*:*:*:*
microsoftinternet_explorer10cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*
microsoftinternet_explorer11cpe:2.3:a:microsoft:internet_explorer:11:-:*:*:*:*:*:*

Related

prion 5
cve 4
nvd 5
cvelist 5
packetstorm 2
symantec 5
zdi 5
checkpoint_advisories 5
nessus 2
mskb 2
openvas 2
kaspersky 1
exploitdb 1
zdt 1
prion
prion
Memory corruption
2016-02-10 11:59:00
Memory corruption
2016-02-10 11:59:00
Memory corruption
2016-02-10 11:59:00
cve
cve
CVE-2016-0072
2016-02-10 11:59:31
CVE-2016-0063
2016-02-10 11:59:26
CVE-2016-0067
2016-02-10 11:59:29
nvd
nvd
CVE-2016-0060
2016-02-10 11:59:23
CVE-2016-0061
2016-02-10 11:59:24
CVE-2016-0063
2016-02-10 11:59:26
cvelist
cvelist
CVE-2016-0072
2016-02-10 11:00:00
CVE-2016-0061
2016-02-10 11:00:00
CVE-2016-0067
2016-02-10 11:00:00
packetstorm
packetstorm
Microsoft Internet Explorer Type Confusion
2016-02-13 00:00:00
Microsoft Internet Explorer MSHTML DOMImplementation Type Confusion
2016-11-28 00:00:00
symantec
symantec
Microsoft Internet Explorer and Edge CVE-2016-0061 Remote Memory Corruption Vulnerability
2016-02-09 00:00:00
Microsoft Internet Explorer CVE-2016-0060 Remote Memory Corruption Vulnerability
2016-02-09 00:00:00
Microsoft Internet Explorer CVE-2016-0063 Remote Memory Corruption Vulnerability
2016-02-09 00:00:00
zdi
zdi
Microsoft Internet Explorer HTML form Element Type Confusion Remote Code Execution Vulnerability
2016-02-09 00:00:00
Microsoft Edge Text Node Type Confusion Remote Code Execution Vulnerability
2016-02-10 00:00:00
Microsoft Internet Explorer DOMImplementation Remote Code Execution Vulnerability
2016-02-10 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Memory Corruption (MS16-009: CVE-2016-0061)
2016-02-09 00:00:00
Microsoft Internet Explorer Memory Corruption (MS16-009: CVE-2016-0060)
2016-02-09 00:00:00
Microsoft Internet Explorer Memory Corruption (MS16-009: CVE-2016-0067)
2016-02-09 00:00:00
nessus
nessus
MS16-009: Cumulative Security Update for Internet Explorer (3134220)
2016-02-09 00:00:00
MS16-011: Cumulative Security Update for Microsoft Edge (3134225)
2016-02-09 00:00:00
mskb
mskb
MS16-009: Cumulative Security Update for Internet Explorer: February 9, 2016
2016-02-09 00:00:00
MS16-011: Cumulative security update for Microsoft Edge: February 9, 2016
2016-02-09 00:00:00
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (3134220)
2016-02-10 00:00:00
Microsoft Edge Multiple Vulnerabilities (3134225)
2016-02-10 00:00:00
kaspersky
kaspersky
KLA10755 Multiple vulnerabilities in Microsoft Edge
2016-02-09 00:00:00
exploitdb
exploitdb
Microsoft Internet Explorer 8/9/10/11 - MSHTML 'DOMImplementation' Type Confusion (MS16-009)
2016-11-28 00:00:00
zdt
zdt
Microsoft Internet Explorer 8 / 9 / 10 / 11 MSHTML - DOMImplementation Type Confusion Exploit
2016-11-29 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.6

Confidence

High

EPSS

0.935

Percentile

99.2%

JSON
Related for CVE-2016-0061
prion5cve4nvd5cvelist5packetstorm2symantec5zdi5checkpoint_advisories5nessus2mskb2openvas2kaspersky1exploitdb1zdt1