漏洞类别:Internet Explorer
漏洞等级: 
漏洞信息
Internet Explorer is a web-browser developed by Microsoft which is included in Microsoft Windows Operating Systems.
Microsoft has released Cumulative Security Updates for Internet Explorer which addresses various vulnerabilities found in Internet Explorer 9 (IE 9), Internet Explorer 10 (IE 10) and Internet Explorer 11 (IE 11). The security updated is rated Critical for Internet Explorer 9 (IE 9), Internet Explorer 10 (IE 10) and Internet Explorer 11 (IE 11).
The Security Update addresses the vulnerabilities by fixing:
1) The update addresses the vulnerability by modifying how the JScript and VBScript scripting engines handle objects in memory. (CVE-2017-0201)
2) The update addresses the vulnerability by modifying how Internet Explorer handles objects in memory. (CVE-2017-0202 )
3) The update addresses the vulnerability by helping to ensure that cross-domain policies are properly enforced in Internet Explorer.(CVE-2017-0210)
KB Articles associated with the Update:
1) 4015221
2) 4015550
3) 4015217
4) 4015583
5) 4015219
6) 4015551
7) 4014661
漏洞危害
Successful exploitation of the vulnerability allows:
1) Remote Code Execution (CVE-2017-0201 and (CVE-2017-0202)
2) Elevation of Privilege (CVE-2017-0210)
解决方案
For more information, Customers are advised to refer the Security Update Guide.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论