Microsoft Internet Explorer 9 through 11 and Microsoft Edge misparse HTTP responses, which allows remote attackers to spoof web sites via a crafted URL, aka "Microsoft Browser Spoofing Vulnerability."Referenceshttp://www.securitytracker.com/id/1034972http://www.securitytracker.com/id/1034971https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-009https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-011
