CVE-2016-3321

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 10 through 11

Description The issue allows local users to enumerate files via vectors involving a file:// URL and an HTML5 sandbox iframe. This is due to Internet Explorer loading different files for attempts to open a file:// URL depending on whether the file exists. The vulnerability could allow an attacker to detect the existence of specific files on the user's system by improperly handling page content.

Recommendations For Microsoft Internet Explorer versions 10 and 11, at the moment, there is no information about a newer version that contains a fix for this vulnerability.