Executive Summary

Informations
NameCVE-2016-7278First vendor Publication2016-12-20
VendorCveLast vendor Modification2018-10-12

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:H/Au:N/C:P/I:N/A:N)
Cvss Base Score2.6Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityHigh
Cvss Expoit Score4.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Microsoft Internet Explorer 9 through 11 allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Windows Hyperlink Object Library Information Disclosure Vulnerability."

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7278

CWE : Common Weakness Enumeration

%idName
100 %CWE-200Information Exposure

CPE : Common Platform Enumeration

TypeDescriptionCount
Application3

Snort® IPS/IDS

DateDescription
2018-01-18Microsoft Internet Explorer out of bounds read attempt
RuleID : 45213 - Revision : 2 - Type : BROWSER-IE
2018-01-18Microsoft Internet Explorer out of bounds read attempt
RuleID : 45212 - Revision : 2 - Type : BROWSER-IE
2018-01-18Microsoft Internet Explorer out of bounds read attempt
RuleID : 45211 - Revision : 2 - Type : BROWSER-IE
2018-01-18Microsoft Internet Explorer out of bounds read attempt
RuleID : 45210 - Revision : 2 - Type : BROWSER-IE
2017-01-12Microsoft Internet Explorer information disclosure attempt
RuleID : 40993 - Revision : 3 - Type : BROWSER-IE
2017-01-12Microsoft Internet Explorer information disclosure attempt
RuleID : 40992 - Revision : 3 - Type : BROWSER-IE
2017-01-12Microsoft Internet Explorer out of bounds read attempt
RuleID : 40989 - Revision : 3 - Type : BROWSER-IE
2017-01-12Microsoft Internet Explorer out of bounds read attempt
RuleID : 40988 - Revision : 3 - Type : BROWSER-IE
2017-01-12Microsoft Internet Explorer title integer overflow attempt
RuleID : 40987 - Revision : 4 - Type : BROWSER-IE
2017-01-12Microsoft Internet Explorer title integer overflow attempt
RuleID : 40986 - Revision : 4 - Type : BROWSER-IE
2017-01-10Microsoft Edge iframe information disclosure attempt
RuleID : 40976 - Revision : 2 - Type : BROWSER-IE
2017-01-10Microsoft Edge iframe information disclosure attempt
RuleID : 40975 - Revision : 2 - Type : BROWSER-IE
2017-01-10Microsoft Edge Object.defineProperty type confusion attempt
RuleID : 40970 - Revision : 3 - Type : BROWSER-IE
2017-01-10Microsoft Edge Object.defineProperty type confusion attempt
RuleID : 40969 - Revision : 3 - Type : BROWSER-IE
2017-01-10Microsoft Office hyperlink object out of bounds read attempt
RuleID : 40941 - Revision : 3 - Type : FILE-OFFICE
2017-01-10Microsoft Office hyperlink object out of bounds read attempt
RuleID : 40940 - Revision : 3 - Type : FILE-OFFICE

Nessus® Vulnerability Scanner

DateDescription
2016-12-13Name : The remote host has a web browser installed that is affected by multiple vuln...
File : smb_nt_ms16-144.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/94716
MS https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16...
SECTRACK http://www.securitytracker.com/id/1037448

Alert History

If you want to see full details history, please login or register.
0
1
2
3
DateInformations
2018-10-13 05:19:07
  • Multiple Updates
2016-12-22 09:24:09
  • Multiple Updates
2016-12-20 21:24:00
  • Multiple Updates
2016-12-20 12:03:56
  • First insertion