Test ID:	1.3.6.1.4.1.25623.1.0.810237
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Edge Multiple Vulnerabilities (3204062)
Summary:	This host is missing a critical security; update according to Microsoft Bulletin MS16-145.
Description:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS16-145. Vulnerability Insight: Multiple flaws exist due to: - The microsoft browsers fail to correctly apply same origin policy for scripts running inside Web Workers. - The multiple memory corruption vulnerabilities. - The microsoftb rowsers do not properly validate content under specific conditions. Vulnerability Impact: Successful exploitation will allow attackers to bypass security, access sensitive information, execute arbitrary code and take control of an affected system. An attacker could then install programs, view, change, or delete data, or create new accounts with full user rights. Affected Software/OS: - Microsoft Windows Server 2016 - Microsoft Windows 10 x32/x64 - Microsoft Windows 10 Version 1511 x32/x64 - Microsoft Windows 10 Version 1607 x32/x64 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.6 CVSS Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-7181 BugTraq ID: 94735 http://www.securityfocus.com/bid/94735 Microsoft Security Bulletin: MS16-145 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-145 http://www.securitytracker.com/id/1037444 Common Vulnerability Exposure (CVE) ID: CVE-2016-7206 BugTraq ID: 94737 http://www.securityfocus.com/bid/94737 Common Vulnerability Exposure (CVE) ID: CVE-2016-7279 BugTraq ID: 94719 http://www.securityfocus.com/bid/94719 Microsoft Security Bulletin: MS16-144 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-144 Common Vulnerability Exposure (CVE) ID: CVE-2016-7280 BugTraq ID: 94750 http://www.securityfocus.com/bid/94750 Common Vulnerability Exposure (CVE) ID: CVE-2016-7281 BugTraq ID: 94723 http://www.securityfocus.com/bid/94723 Common Vulnerability Exposure (CVE) ID: CVE-2016-7282 BugTraq ID: 94724 http://www.securityfocus.com/bid/94724 Common Vulnerability Exposure (CVE) ID: CVE-2016-7286 BugTraq ID: 94748 http://www.securityfocus.com/bid/94748 https://www.exploit-db.com/exploits/40947/ http://packetstormsecurity.com/files/140250/Microsoft-Edge-SIMD.toLocaleString-Uninitialized-Memory.html https://bugs.chromium.org/p/project-zero/issues/detail?id=961 Common Vulnerability Exposure (CVE) ID: CVE-2016-7287 BugTraq ID: 94722 http://www.securityfocus.com/bid/94722 https://www.exploit-db.com/exploits/40948/ http://packetstormsecurity.com/files/140251/Microsoft-Edge-Internationalization-Type-Confusion.html https://bugs.chromium.org/p/project-zero/issues/detail?id=972 Common Vulnerability Exposure (CVE) ID: CVE-2016-7288 BugTraq ID: 94749 http://www.securityfocus.com/bid/94749 https://www.exploit-db.com/exploits/41357/ http://packetstormsecurity.com/files/140994/Microsoft-Edge-TypedArray.sort-Use-After-Free.html https://bugs.chromium.org/p/project-zero/issues/detail?id=983 Common Vulnerability Exposure (CVE) ID: CVE-2016-7296 BugTraq ID: 94738 http://www.securityfocus.com/bid/94738 Common Vulnerability Exposure (CVE) ID: CVE-2016-7297 BugTraq ID: 94751 http://www.securityfocus.com/bid/94751
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.