HTTP: Microsoft Windows 2000 Multiple COM Object Unsafe ActiveX Control
This signature detects attempts to use unsafe ActiveX controls in Windows 2000. An attacker can create a malicious Web site containing Web pages with dangerous ActiveX controls, which if accessed by a victim, allows the attacker to gain control of the victim's client browser.
Extended Description
Microsoft Internet Explorer allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code by instantiating certain Windows 2000 ActiveX COM Objects including (1) ciodm.dll, (2) myinfo.dll, (3) msdxm.ocx, and (4) creator.dll.
Affected Products
Microsoft windows_2003_server
References
BugTraq: 19636
CVE: CVE-2006-4495
URL: http://www.securityfocus.com/archive/1/archive/1/443896/100/100/threaded
Short Name
HTTP:STC:ACTIVEX:WIN2K-AX
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
2000 ActiveX COM CVE-2006-4495 Control Microsoft Multiple Object Unsafe Windows bid:19636
Release Date
08/31/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Microsoft
CVSS Score
7.5