First published: Wed Sep 14 2016(Updated: )
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to obtain sensitive information via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability."
Credit: secure@microsoft.com secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Internet Explorer | ||
Microsoft Edge Beta | ||
Internet Explorer | =9 | |
Internet Explorer | =10 | |
Internet Explorer | =11 | |
All of | ||
Internet Explorer | =9 | |
Any of | ||
Microsoft Windows Server | =sp2 | |
Microsoft Windows Vista | =sp2 | |
All of | ||
Internet Explorer | =10 | |
Microsoft Windows Server | ||
All of | ||
Internet Explorer | =11 | |
Any of | ||
Microsoft Windows 10 | ||
Microsoft Windows 10 | ||
Microsoft Windows 10 | ||
Microsoft Windows 7 | =sp1 | |
Microsoft Windows | ||
Microsoft Windows RT | ||
Microsoft Windows Server | =r2-sp1 | |
Microsoft Windows Server | =r2 | |
All of | ||
Microsoft Edge Beta | ||
Any of | ||
Microsoft Windows 10 | ||
Microsoft Windows 10 | ||
Microsoft Windows 10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2016-3351 is classified as a medium severity information disclosure vulnerability.
To mitigate CVE-2016-3351, ensure that your version of Internet Explorer or Microsoft Edge is updated to the latest version.
CVE-2016-3351 affects Microsoft Internet Explorer versions 9, 10, and 11.
CVE-2016-3351 impacts all versions of Microsoft Edge.
Yes, CVE-2016-3351 may allow attackers to obtain sensitive information through a crafted website.