Vulnerability Description
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user, a.k.a. "Internet Explorer Memory Corruption Vulnerability."
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Internet Explorer | 11 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/97441Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038238
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0202PatchVendor Advisory
- https://www.exploit-db.com/exploits/41941/
- http://www.securityfocus.com/bid/97441Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038238
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0202PatchVendor Advisory
- https://www.exploit-db.com/exploits/41941/
FAQ
What is CVE-2017-0202?
CVE-2017-0202 is a vulnerability with a CVSS score of 7.5 (HIGH). A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary...
How severe is CVE-2017-0202?
CVE-2017-0202 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-0202?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Internet Explorer.