Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CVE-2016-3199)

  Severity: CRITICAL
  Advisory Date: JUN 16, 2016

  DESCRIPTION

A vulnerability was discovered in the underlying JavaScript engine for Microsoft Edge that could allow attackers to achieve remote code execution conditions. The underlying issue involves a class object confusion vulnerability that could lead to an out of bound memory write. A successful exploitation of the issue could allow an attacker to execute arbitrary code on the remote system.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1007661