Vulnerability CVE-2017-8653
Published: 2017-08-08   Modified: 2017-08-09

Description:
Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user due to Microsoft browsers improperly accessing objects in memory, aka "Microsoft Browser Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8669.

CVSS2 => (AV:N/AC:H/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.6/10
10/10
4.9/10
Exploit range
Attack complexity
Authentication
Remote
High
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Microsoft -> Internet explorer 
Microsoft -> EDGE 

 References:
http://www.securityfocus.com/bid/100059
http://www.securitytracker.com/id/1039094
http://www.securitytracker.com/id/1039095
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8653
Copyright 2024, cxsecurity.com

 

Back to Top