Microsoft Internet Explorer Memory Corruption (MS16-104: CVE-2016-3375; CVE-2017-11913)

A remote code execution vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling scripts. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could cause memory corruption in a way th...

Microsoft Word Document Malicious Known Downloaders

Microsoft Office files might contain malicious downloaders. A remote attacker could send spam e-mails including such downloaders, and use social engineering in order to convince users to manually enable them. This would allow the malicious code to run and infect the target system...

Microsoft Internet Explorer Memory Corruption (MS16-084 : CVE-2016-3243)

A remote code execution vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could cause memory...

Microsoft Edge Memory Corruption (MS16-085: CVE-2016-3246)

A remote code execution vulnerability exists in Microsoft Edge. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could cause memory corruption in...

Microsoft Office Files Containing Malicious VBScript Downloader

Microsoft Office files might contain a malicious downloader. A remote attacker could send spam e-mails including those downloaders, and use social engineering in order to convince users to manually enable them. This would allow the malicious code to run and infect the target system...

Microsoft Internet Explorer Memory Corruption (MS16-063: CVE-2016-3207)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could...

Microsoft Internet Explorer Memory Corruption (MS16-063: CVE-2016-3210)

A remote code execution vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could cause memory...

Microsoft Edge Memory Corruption (MS16-068: CVE-2016-3199)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could...

Microsoft Internet Explorer Memory Corruption (MS16-063: CVE-2016-3205)

A remote code execution vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to an out-of-bound write access. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could cause memory corruption in a way that would...

Regsvr32.exe (.sct) Command Delivery Server

This module uses the Regsvr32.exe Application Whitelisting Bypass technique as a way to run a command on a target system. The major advantage of this technique is that you can execute a static command on the target system and dynamically and remotely change the command that will actually run by...

Microsoft Edge Memory Corruption (MS16-052: CVE-2016-0191)

A remote code execution vulnerability has been reported in Microsoft Edge. The vulnerability is due to a use of uninitialized pointer. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could cause memory corruption in a way that would...

Microsoft Windows Media Center Remote Code Execution (MS16-059: CVE-2016-0185)

A flaw exists in Windows Media Center when parsing MCL files. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted Media Center file. Successful exploitation could allow attackers to execute code on the target system...

Microsoft Edge Memory Corruption (MS16-038: CVE-2016-0156)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could...

Microsoft Internet Explorer Memory Corruption (MS16-037: CVE-2016-0154)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could...

Microsoft Internet Explorer Memory Corruption (MS16-023: CVE-2016-0105)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could...

Microsoft Internet Explorer Memory Corruption (MS16-023: CVE-2016-0107)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to out-of-bound write access. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page. Successful exploitation could cause memory...

Microsoft Edge Memory Corruption (MS16-024: CVE-2016-0124)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could...

Microsoft Internet Explorer Memory Corruption (MS16-023: CVE-2016-0110)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer copies data between two mismatched size arrays considering only the size of the source array. A remote attacker can exploit this issue by...

Microsoft Internet Explorer Memory Corruption (MS16-023: CVE-2016-0108)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could...

Microsoft Internet Explorer Memory Corruption (MS16-023: CVE-2016-0109)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...