CVE-2016-7209

Name of the Vulnerable Software and Affected Versions Microsoft Edge (affected versions not specified)

Description The issue is related to a spoofing vulnerability that exists when Microsoft Edge does not properly parse HTTP content. This could allow an attacker to trick a user by redirecting them to a specially crafted website, which could either spoof content or serve as a pivot to chain an attack with other vulnerabilities in web services. To exploit the issue, the user must click a specially crafted URL. Additionally, there is a vulnerability in the Windows operating system related to the atmfd.dll library, which is associated with a lack of protection for service data, potentially allowing a remote attacker to obtain confidential information from process memory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.