Main Vulnerability Database Exploits ID:2 - Exploit for Information Disclosure in Microsoft Internet Explorer - CVE-2016-3321

ID:2 - Exploit for Information Disclosure in Microsoft Internet Explorer - CVE-2016-3321

Published: March 18, 2020

Vulnerability identifier: #VU279

Vulnerability risk: Low

CVE-ID: CVE-2016-3321

CWE-ID: CWE-200

Exploitation vector: Remote access

Vulnerable software:
Microsoft Internet Explorer

Link to public exploit:

https://www.rapid7.com/db/modules/auxiliary/gather/ie_sandbox_findfiles

Vulnerability description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists when Internet Explorer incorrectly handles web page content. A remote attacker can create a specially crafted web page, trick a victim to open that page in browser and determine presence of specific files on victim’s computer.

Successful exploitation of this vulnerability my allow an attacker to obtain potentially sensitive information.

ID:2 - Exploit for Information Disclosure in Microsoft Internet Explorer - CVE-2016-3321

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human