Lucene search
PRIOn knowledge basePRION:CVE-2016-3321HistoryAug 09, 2016 - 9:59 p.m.
Information disclosure
2016-08-0921:59:00
PRIOn knowledge base
www.prio-n.com
5
Microsoft Internet Explorer 10 and 11 load different files for attempts to open a file:// URL depending on whether the file exists, which allows local users to enumerate files via vectors involving a file:// URL and an HTML5 sandbox iframe, aka “Internet Explorer Information Disclosure Vulnerability.”
| CPE | Name | Operator | Version |
|---|---|---|---|
| internet_explorer | eq | 10 | |
| internet_explorer | eq | 11 |
References
seclists.org/fulldisclosure/2016/Aug/44
www.securityfocus.com/archive/1/539174/100/0/threaded
www.securityfocus.com/bid/92291
www.securitytracker.com/id/1036562
docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-095
www.securify.nl/advisory/SFY20160301/internet_explorer_iframe_sandbox_local_file_name_disclosure_vulnerability.html
Related
cve
cve
CVE-2016-3321
2016-08-09 21:59:28
cvelist
cvelist
CVE-2016-3321
2016-08-09 21:00:00
symantec
symantec
mscve
mscve
Internet Explorer Information Disclosure Vulnerability
2016-08-09 07:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Information Disclosure (MS16-095: CVE-2016-3321)
2016-08-09 00:00:00
nvd
nvd
CVE-2016-3321
2016-08-09 21:59:28
mskb
mskb
MS16-095: Security update for Internet Explorer: August 9, 2016
2016-08-09 07:00:00
MS16-095: Cumulative security update for Internet Explorer: August 9, 2016
2016-08-09 00:00:00
Cumulative update for Windows 10 Version 1607: August 9, 2016
2016-08-09 07:00:00
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (3177356)
2016-08-10 00:00:00
nessus
nessus
MS16-095: Cumulative Security Update for Internet Explorer (3177356)
2016-08-09 00:00:00
kaspersky
kaspersky
KLA10858 Multiple vulnerabilities in Microsoft Edge and Internet Explorer
2016-08-09 00:00:00