漏洞类别:Windows
漏洞等级: 
漏洞信息
This security update is rated Critical for Microsoft Edge on Windows 10. The update addresses the vulnerabilities by:
modifying how Microsoft Edge and certain functions handle objects in memory.
modifying how the Chakra JavaScript scripting engine handles objects in memory.
restricting what information is returned to Microsoft Edge.
changing the way Microsoft Browsers store credentials in memory.
correcting how Microsoft Browsers handle namespace boundaries.
correcting how Microsoft Edge Content Security Policy validates documents.
漏洞危害
The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Microsoft Edge. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user.
解决方案
Customers are advised to refer to Microsoft Security Bulletin MS16-119 for details.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
MS16-119: Windows 10 for 32-bit Systems
MS16-119: Windows 10 for x64-based Systems
MS16-119: Windows 10 Version 1511 for 32-bit Systems
MS16-119: Windows 10 Version 1511 for x64-based Systems
0day
文章评论