Elevation of privilege vulnerability in Microsoft Edge - MS17-001ID: oval:org.secpod.oval:def:38619 | Date: (C)2017-01-11 (M)2024-03-06 |
Class: PATCH | Family: windows |
The host is missing an important security update according to Microsoft bulletin, MS17-001. The update is required to fix an elevation of privilege vulnerability. A flaw is present in the application, which improperly enforces cross-domain policies with about:blank. Successful exploitation could allow attackers to access information from one domain and inject it into another domain or elevate privileges.
Platform: |
Microsoft Windows 10 |
Microsoft Windows Server 2016 |