CVE-2017-0037

Published: Feb 26, 2017Modified: Apr 22, 2026CISA KEV

8.1

Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.2 / Impact: 5.9

Source: NVD

Description

Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the Layout::MultiColumnBoxBuilder::HandleColumnBreakOnColumnSpanningElement function in mshtml.dll, which allows remote attackers to execute arbitrary code via vectors involving a crafted Cascading Style Sheets (CSS) token sequence and crafted JavaScript code that operates on a TH element.

Affected (2)

Products: Microsoft: Edge, Internet Explorer

2 products

Internet Explorer

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Microsoft Edge	All versions

Configuration B

1 vulnerable · 8 platform

Vulnerable Software	Affected Versions
Microsoft Internet Explorer	Version 11

Running on/with	Platform Versions
Microsoft Windows 10 1507	All versions
Microsoft Windows 10 1511	All versions
Microsoft Windows 10 1607	All versions
Microsoft Windows 8.1	All versions
Microsoft Windows Rt 8.1	All versions
Microsoft Windows Server 2012	All versions
Microsoft Windows Server 2012	Version r2
Microsoft Windows Server 2016	All versions

Related CWEs

Access of Resource Using Incompatible Type ('Type Confusion')

The product allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.

References (19)

http://www.securityfocus.com/bid/96088

Source: secure@microsoft.com

Broken LinkThird Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1037905

Source: secure@microsoft.com

Broken LinkThird Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1037906

Source: secure@microsoft.com

Broken LinkThird Party AdvisoryVDB Entry

https://0patch.blogspot.si/2017/03/0patching-another-0-day-internet.html

Source: secure@microsoft.com

ExploitThird Party Advisory

https://bugs.chromium.org/p/project-zero/issues/detail?id=1011

Source: secure@microsoft.com

ExploitIssue TrackingThird Party Advisory

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0037

Source: secure@microsoft.com

PatchVendor Advisory

https://www.exploit-db.com/exploits/41454/

Source: secure@microsoft.com

ExploitThird Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/42354/

Source: secure@microsoft.com

ExploitThird Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/43125/

Source: secure@microsoft.com

ExploitThird Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/96088

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1037905

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1037906

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party AdvisoryVDB Entry

https://0patch.blogspot.si/2017/03/0patching-another-0-day-internet.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://bugs.chromium.org/p/project-zero/issues/detail?id=1011

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitIssue TrackingThird Party Advisory

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0037

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://www.exploit-db.com/exploits/41454/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/42354/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

https://www.exploit-db.com/exploits/43125/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-0037

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

US Government Resource

Timeline

No history available yet.