Microsoft Internet Explorer 9 through 11 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability." This vulnerability is different from those described in CVE-2017-0018 and CVE-2017-0037.
2017-03-17T00:59:04.180
2025-10-22T00:15:59.613
Deferred
CVSSv3.1: 8.8 (HIGH)
AV:N/AC:H/Au:N/C:C/I:C/A:C
4.9
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | microsoft | internet_explorer | 9 | Yes |
| Operating System | microsoft | windows_server_2008 | - | No |
| Operating System | microsoft | windows_vista | - | No |
| Application | microsoft | internet_explorer | 10 | Yes |
| Operating System | microsoft | windows_server_2012 | - | No |
| Application | microsoft | internet_explorer | 11 | Yes |
| Operating System | microsoft | windows_10_1507 | - | No |
| Operating System | microsoft | windows_10_1511 | - | No |
| Operating System | microsoft | windows_10_1607 | - | No |
| Operating System | microsoft | windows_7 | - | No |
| Operating System | microsoft | windows_8.1 | - | No |
| Operating System | microsoft | windows_rt_8.1 | - | No |
| Operating System | microsoft | windows_server_2008 | r2 | No |
| Operating System | microsoft | windows_server_2012 | - | No |
| Operating System | microsoft | windows_server_2012 | r2 | No |
| Operating System | microsoft | windows_server_2016 | - | No |