CVE-2017-0037

by Fred · 26/02/2017

Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the Layout::MultiColumnBoxBuilder::HandleColumnBreakOnColumnSpanningElement function in mshtml.dll, which allows remote attackers to execute arbitrary code via vectors involving a crafted Cascading Style Sheets (CSS) token sequence and crafted JavaScript code that operates on a TH element.

Date published : 2017-02-26

http://www.securityfocus.com/bid/96088

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0037

CVE-2017-0037

Related

Recent Posts

Categories

Latest CWE

CVE-2017-0037

Share this:

Related

Recent Posts

Categories

Tags

Latest CWE