Vulnerability CVE-2015-6168

Vulnerability CVE-2015-6168

Published: 2015-12-09

Description:

	Topic	Author	Date
High	MS Edge CMarkup::EnsureDeleteCFState Use-After-Free	SkyLined	03.12.2016

Type:

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

CVSS Base Score	Impact Subscore	Exploitability Subscore
9.3/10	10/10	8.6/10

Affected software
Microsoft -> EDGE

http://blog.skylined.nl/20161201001.html

http://seclists.org/fulldisclosure/2016/Dec/4

http://www.securitytracker.com/id/1034316

http://www.zerodayinitiative.com/advisories/ZDI-15-583

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-125

https://www.exploit-db.com/exploits/40878/