Endpoint Vulnerability

Microsoft Browser Security Feature Bypass

Description

A security feature bypass vulnerability exists when Microsoft browsers improperly handle redirect requests. The vulnerability allows Microsoft browsers to bypass CORS redirect restrictions, and to follow redirect requests that should otherwise be ignored. An attacker who successfully exploited the vulnerability could force the browser to send data that would otherwise be restricted to a destination website of the attacker's choice.

Affected Products

Internet Explorer 10,Internet Explorer 11,Internet Explorer 9,Microsoft Edge,Windows 10,Windows 7,Windows 8,Windows RT 8.1,Windows Server 2008,Windows Server 2012

References

CVE-2017-8592,