CVE-2017-0154

Summary

Microsoft Internet Explorer 11 on Windows 10, 1511, and 1606 and Windows Server 2016 does not enforce cross-domain policies, allowing attackers to access information from one domain and inject it into another via a crafted application, aka, "Internet Explorer Elevation of Privilege Vulnerability."

Affected Software

VendorProductVersion RangeStatus
Microsoft CorporationInternet ExplorerInternet Explorer 11 in Windows 10, 1511, 1606, and Windows Server 2016affected

Weaknesses

  • Elevation of Privilege

ADP Enrichment

CVE Program Container

Additional References

References