Medium severity4.3NVD Advisory· Published Mar 17, 2017· Updated Jun 17, 2026
CVE-2017-0009
CVE-2017-0009
Description
Microsoft Internet Explorer 9 through 11 allow remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability." This vulnerability is different from those described in CVE-2017-0011, CVE-2017-0017, CVE-2017-0065, and CVE-2017-0068.
Affected products
5cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:internet_explorer:11:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:internet_explorer:9:*:*:*:*:*:*:*
- (no CPE)range: 9-11
- Microsoft Corporation/Browserv5Range: Internet Explorer 9 through 11 and Edge
Patches
Vulnerability mechanics
References
4- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0009nvdPatchVendor Advisory
- www.securityfocus.com/bid/96077nvdThird Party AdvisoryVDB Entry
- www.security-assessment.com/files/documents/advisory/comparestring_infoleak.pdfnvd
- www.securitytracker.com/id/1038006nvd
News mentions
0No linked articles in our index yet.