CVE-2016-7204

Name of the Vulnerable Software and Affected Versions Microsoft Edge (affected versions not specified) Windows (affected versions not specified)

Description The issue is caused by a buffer overflow in memory, allowing a remote attacker to execute arbitrary code via a specially crafted website. An information disclosure vulnerability exists when Microsoft Edge improperly handles objects in memory, potentially allowing access to a user's "My Documents" folder. For an attack to be successful, an attacker must persuade a user to open a malicious website.

Recommendations As a temporary workaround, consider restricting access to the "My Documents" folder until a patch is available. Avoid using Microsoft Edge to access sensitive information until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.