HTTP: Internet Explorer Codebase ActiveX
This signature detects attempts to use injected HTML to reference an Active-X control. Attackers can create a malicious Web site that uses injected HTML; users browsing that malicious Web site can unknowingly execute arbitrary attack code. Attackers can also send an HTML-formatted e-mail to a target user to redirect the user to the malicious Web site.
Extended Description
The problem occurs when Internet Explorer receives a response from the server when a web page containing an object tag is parsed. Successful exploitation of this vulnerability could allow a malicious object to be trusted and as such be executed on the local system. All code execution would occur in the security context of the current user.
Affected Products
Microsoft internet_explorer
References
BugTraq: 8456
CVE: CVE-2003-0532
URL: http://www.kb.cert.org/vuls/id/865940 http://www.microsoft.com/technet/security/bulletin/MS03-032.asp
Short Name
HTTP:STC:ACTIVEX:CODEBASE
Severity
Critical
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
ActiveX CVE-2003-0532 Codebase Explorer Internet bid:8456
Release Date
11/05/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Microsoft
CVSS Score
7.5