The vulnerability of the Internet Explorer browser allows a perpetrator to bypass the AppContainer security mechanism and increase their privileges.

The vulnerability of the EditWith browser implementation in Internet Explorer is related to deficiencies in restricting access to certain functions. Exploiting this vulnerability allows a malicious actor to bypass the AppContainer security mechanism and enhance their privileges...

Microsoft Internet Explorer elevation of privilege vulnerability (CNVD-2015-06626)

Internet Explorer is a web browser from Microsoft. A security vulnerability exists in the implementation of the broker EditWith feature in Internet Explorer versions 8-11. A remote attacker, initiated via arbitrary application DelegateExecute, can exploit this vulnerability to bypass the...

Privilege escalation

The broker EditWith feature in Microsoft Internet Explorer 8 through 11 allows remote attackers to bypass the AppContainer protection mechanism and gain privileges via a DelegateExecute launch of an arbitrary application, as demonstrated by a transition from Low Integrity to Medium Integrity, aka...

Microsoft Internet Explorer EditWith Sandbox Escape Vulnerability

This vulnerability allows remote attackers to escape the Application Container and execute code in the context of the logged-in user on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious pag...

Microsoft Internet Explorer EditWith Broker API Sandbox Escape Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer running in either Protected Mode or Enhanced Protected Mode. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or...