FortiClient Vulnerability

Internet Explorer CVE-2016-3292 Elevation of Privilege Vulnerability

Description

An elevation of privilege vulnerability exists when Internet Explorer fails a check, allowing sandbox escape. An attacker who successfully exploited the vulnerability could use the sandbox escape to elevate privileges on an affected system. This vulnerability by itself does not allow arbitrary code execution; however, it could allow arbitrary code to be run if the attacker uses it in combination with another vulnerability (such as a remote code execution vulnerability or another elevation of privilege vulnerability) that is capable of leveraging the elevated privileges when code execution is attempted. The update addresses the vulnerability by correcting how Internet Explorer handles zone and integrity settings.

Affected Applications

Internet Explorer 11
Internet Explorer 10

CVE References

CVE-2016-3292

Other References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-3292

ID	55983
Created	Dec 11, 2018
Description Updated	Dec 21, 2023
Risk
Coverage	FortiClient
OS	Windows
Vendor	Microsoft
Patch	auto
Application	Internet Explorer 11 , Internet Explorer 10

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiClient Vulnerability

Internet Explorer CVE-2016-3292 Elevation of Privilege Vulnerability

Description

Affected Applications

CVE References

Other References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

FortiClient Vulnerability

Internet Explorer CVE-2016-3292 Elevation of Privilege Vulnerability

Description

Affected Applications

CVE References

Other References

Threat Intelligence
Center