CVE-2017-0201

Summary

A remote code execution vulnerability exists in Internet Explorer in the way that the JScript and VBScript engines render when handling objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user, aka "Scripting Engine Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0093.

Affected Software

VendorProductVersion RangeStatus
Microsoft CorporationInternet ExplorerThe Jscript and VBScript engine in Microsoft Internet Explorer 9 and Internet Explorer 10affected

Weaknesses

  • Remote Code Execution

ADP Enrichment

CVE Program Container

Additional References

References