Internet Explorer Information Disclosure Vulnerability

2016-12-13T08:00:00
ID MS:CVE-2016-3298
Type mscve
Reporter Microsoft
Modified 2016-12-13T08:00:00

Description

An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory.

An attacker who successfully exploited this vulnerability could test for the presence of files on disk. For an attack to be successful, an attacker must persuade a user to open a malicious website.

The security update addresses the vulnerability by changing the way Internet Explorer handles objects in memory.