High severity7.5NVD Advisory· Published Oct 14, 2016· Updated May 6, 2026

CVE-2016-3387

Description

Microsoft Internet Explorer 10 and 11 and Microsoft Edge do not properly restrict access to private namespaces, which allows remote attackers to gain privileges via unspecified vectors, aka "Microsoft Browser Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-3388.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/93381nvd
www.securitytracker.com/id/1036992nvd
www.securitytracker.com/id/1036993nvd
docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-118nvd
docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-119nvd
www.exploit-db.com/exploits/40607/nvd

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.027
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000