HTTP: Conflicting CHARSET
This signature detects attempts to exploit a known vulnerability in Internet Explorer 6.0 (IE). An attacker can create malicious Web pages containing conflicting Charset information, which if access by a victim, can allow the attacker to gain control of the victim's client browsers. Note: Do not include this attack object into your policy if your e-mail service utilizes Outlook Web Access as it can trigger false positives.
Extended Description
Microsoft Internet Explorer is prone to remote code-execution vulnerability because of a race-condition in its language-pack installation support. A remote attacker can exploit this issue to execute arbitrary code in the context of the user running the vulnerable application.
Affected Products
Avaya messaging_application_server,Microsoft internet_explorer
References
BugTraq: 24429
CVE: CVE-2007-3027
URL: http://www.microsoft.com/technet/security/Bulletin/MS07-033.mspx
Short Name
HTTP:STC:CHAR-CONFLICT
Severity
Major
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CHARSET CVE-2007-3027 Conflicting bid:24429
Release Date
06/12/2007
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3339
False Positive
Frequently
Vendors
Nortel_networks
Avaya
Microsoft
CVSS Score
9.3