Privilege escalation

Microsoft Edge allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "Microsoft Edge Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0158...

CVE-2016-0158

Microsoft Edge on Windows 10 is affected by CVE-2016-0158, an elevation of privilege vulnerability that bypasses the Same Origin Policy via cross‑domain policy enforcement weaknesses. Connected sources describe Edge failing to properly validate JavaScript and enforce domain restrictions, enabling...

Microsoft Edge Elevation of Privilege (MS16-038: CVE-2016-0158)

An elevation of privilege vulnerability has been reported in Microsoft Edge. The vulnerability is due to an error in the way that Microsoft Edge validates permissions under specific conditions. A remote attacker can exploit this issue by enticing a user to open a specially crafted web-page with a...

KLA10789 Multiple vulnerabilities in Microsoft Browsers

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Microsoft Browser can be...

MS16-038: Cumulative Security Update for Microsoft Edge (3148532)

The version of Microsoft Edge installed on the remote host is missing Cumulative Security Update 3148532. It is, therefore, affected by multiple vulnerabilities : - Multiple remote code execution vulnerabilities exist due to improper handling of objects in memory. An attacker can exploit these...