VYPR
High severity7.5NVD Advisory· Published Apr 12, 2017· Updated Jun 17, 2026

CVE-2017-0201

CVE-2017-0201

Description

A remote code execution vulnerability exists in Internet Explorer in the way that the JScript and VBScript engines render when handling objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user, aka "Scripting Engine Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0093.

Affected products

4
  • cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:9:*:*:*:*:*:*:*
    • (no CPE)
  • Microsoft Corporation/Internet Explorerv5
    Range: The Jscript and VBScript engine in Microsoft Internet Explorer 9 and Internet Explorer 10

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.