Nacionalni CERT

Nadogradnja za Microsoft Edge

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11764
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11766
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8597
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8643
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8648
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8649
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8660
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8723
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8724
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8728
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8729
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8731
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8734
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8735
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8736
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8737
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8738
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8739
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8740
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8741
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8748
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8750
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8751
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8752
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8753
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8754
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8755
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8756
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8757

Microsoft je izdao nadogradnju za otklanjanje ranjivosti u web pregledniku Microsoft Edge. Ranjivosti su uzrokovane nepravilnim pristupanjem i upravljanjem objektima u memoriji, nepravilnim upravljanjem događajima u međuspremniku, načinom kojim CSP provjerava posebno oblikovane dokumente, nepravilnim parsiranjem HTTP sadržaja te nepravilnom provjerom nadređene domene u određenoj funkcionalnosti. Ovisno o tipu ranjivosti, potencijalni udaljeni napadači mogli bi ih iskoristiti za izvršavanje proizvoljnog programskog koda, otkrivanje informacija, zaobilaženje sigurnosnih značajki te predstavljanje lažnog sadržaja korisniku koji posjeti posebno oblikovanu stranicu. Korisnike se upućuje na ažuriranje web preglednika izdanom nadogradnjom te čitanje izvornog opisa ranjivosti za više detalja.