Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka “Microsoft Browser Memory Corruption Vulnerability.”
www.securitytracker.com/id/1034315
www.securitytracker.com/id/1034316
docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-124
docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-125
www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtml?id=1212