CVE-2016-3273

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 9 through 11 Microsoft Edge (affected versions not specified)

Description The issue is related to the improper restriction of JavaScript code by the XSS Filter in Microsoft browsers, allowing remote attackers to obtain sensitive information via a crafted web site. An information disclosure vulnerability exists when the Microsoft Browser XSS Filter does not properly validate content under specific conditions, potentially leading to an attacker running arbitrary JavaScript.

Recommendations For Microsoft Internet Explorer versions 9 through 11, update to a version that includes the fix for this issue. For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.