CVE-2016-3267

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 9 through 11 Microsoft Edge (affected versions not specified)

Description The issue allows an attacker to determine the existence of unspecified files via a crafted web site. An information disclosure vulnerability exists when the browsers do not properly handle objects in memory, potentially allowing an attacker to read data that was not intended to be disclosed. This vulnerability could be used to obtain information in an attempt to further compromise the affected system, but it would not allow an attacker to execute code or to elevate a user’s rights directly.

Recommendations For Microsoft Internet Explorer versions 9 through 11, update to a version that includes the fix for this issue. For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.