CVE-2016-0160 — Microsoft Internet Explorer vulnerability

6 documents6 sources

Severity

7.8HIGHNVD

EPSS

1.2%

top 20.85%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Internet Explorer

Timeline

PublishedApr 12

Latest updateMay 14

Description

Microsoft Internet Explorer 11 mishandles DLL loading, which allows local users to gain privileges via a crafted application, aka "DLL Loading Remote Code Execution Vulnerability."

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

▶NVDmicrosoft/internet_explorer11

🔴Vulnerability Details

GHSA

GHSA-4389-4jqr-65cm: Microsoft Internet Explorer 11 mishandles DLL loading, which allows local users to gain privileges via a crafted application, aka "DLL Loading Remote↗2022-05-14

▶

CVEList

CVE-2016-0160: Microsoft Internet Explorer 11 mishandles DLL loading, which allows local users to gain privileges via a crafted application, aka "DLL Loading Remote↗2016-04-12

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Windows - ManagementObject Arbitrary .NET Serialization Remote Code Execution↗2017-04-20

▶

📋Vendor Advisories

Microsoft

DLL Loading Remote Code Execution Vulnerability↗2016-04-12

▶

📄Research Papers

CTF

code-name-10 / README↗2016

▶