CVE-2017-0154

2017-03-17T00:59:00
ID CVE-2017-0154
Type cve
Reporter secure@microsoft.com
Modified 2017-07-12T01:29:00

Description

Microsoft Internet Explorer 11 on Windows 10, 1511, and 1606 and Windows Server 2016 does not enforce cross-domain policies, allowing attackers to access information from one domain and inject it into another via a crafted application, aka, "Internet Explorer Elevation of Privilege Vulnerability."