CVE-2016-3370

The PDF library in Microsoft Edge, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information via a crafted web site, aka "PDF Library Information Disclosure Vulnerability," a different vulnerability than CVE-2016-3374.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:edge:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:1511:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_rt_8.1:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

History

21 Nov 2024, 02:49

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/92839 - () http://www.securityfocus.com/bid/92839 -
References () http://www.securitytracker.com/id/1036789 - () http://www.securitytracker.com/id/1036789 -
References () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-105 - () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-105 -
References () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-115 - () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-115 -

Information

Published : 2016-09-14 10:59

Updated : 2024-11-21 02:49


NVD link : CVE-2016-3370

Mitre link : CVE-2016-3370

CVE.ORG link : CVE-2016-3370


JSON object : View

Products Affected

microsoft

  • windows_8.1
  • edge
  • windows_rt_8.1
  • windows_server_2012
  • windows_10
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor