CVE-2017-8529 Information

Description

Internet Explorer in Microsoft Windows 7 SP1 Windows Server 2008 R2 SP1 Windows 8.1 and Windows RT 8.1 and Windows Server 2012 and R2 allow an attacker to detect specific files on the user’s computer when affected Microsoft scripting engines do not properly handle objects in memory aka \Microsoft Browser Information Disclosure Vulnerability.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Reference

http://www.securityfocus.com/bid/98953 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8529

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

NONE

Base Score

NONE

Base Severity

6.5