Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows 10 1511, and Microsoft Edge allow remote attackers to obtain sensitive information from process memory via a crafted PDF document, aka "Windows PDF Information Disclosure Vulnerability," a different vulnerability than CVE-2016-3201.
References
Link | Resource |
---|---|
http://www.zerodayinitiative.com/advisories/ZDI-16-370 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1036099 | Third Party Advisory VDB Entry |
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-080 | Patch Vendor Advisory |
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-068 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
AND |
|
Information
Published : 2016-06-15 18:59
Updated : 2019-05-15 10:48
NVD link : CVE-2016-3215
Mitre link : CVE-2016-3215
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
microsoft
- edge
- windows_8.1
- windows_server_2012
- windows_10