Vulnerability Key Information Vulnerability Overview Title: Microsoft Internet Explorer AcquireLineBoxBuilderForLayout Null Array Base Remote Code Execution Vulnerability ID: - ZDI-16-276 - ZDI-CAN-3509 - CVE-2016-0192 CVSS Score CVSS Score: 5.1 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P Affected Scope Affected Vendor: Microsoft Affected Product: Internet Explorer Vulnerability Details Description: This vulnerability allows remote attackers to execute arbitrary code on vulnerable Microsoft Internet Explorer installations. Exploitation requires user interaction, meaning the target must visit a malicious webpage or open a malicious file. Cause: The vulnerability is related to how Internet Explorer handles webpage layout. By manipulating document elements, an attacker can cause Internet Explorer to use a null pointer as the base address for array reads. Attackers can exploit this vulnerability to execute code within the context of the current process. Additional Information Remediation: Microsoft has released an update to fix this vulnerability. For more details, please refer to: [](https://technet.microsoft.com/en-us/library/security/ms16-051.aspx) Disclosure Timeline 2016-02-01: Vulnerability reported to vendor 2016-05-10: Coordinated public advisory release Discoverer Discoverer: Zheng Huang from Baidu Scloud XTeam