HTTP: Dangerous ClassID in ActiveX Object Type 147
This signature detects attempts to exploit a known vulnerability against Internet Explorer. Malicious Web sites, containing dangerous ActiveX CLSID references, can exploit this vulnerability and gain control of client browsers.
Extended Description
The DXImageTransform.Microsoft.Light ActiveX control is prone to remote code execution. An attacker could exploit this issue to execute code in the context of the user visiting a malicious web page.
Affected Products
Microsoft internet_explorer
References
BugTraq: 18303
CVE: CVE-2006-2383
URL: http://www.microsoft.com/technet/security/bulletin/MS06-021.mspx
Short Name
HTTP:STC:CLSID:ACTIVEX:AX-147
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
147 ActiveX CVE-2006-2383 ClassID Dangerous Object Type bid:18303 in
Release Date
06/13/2006
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Microsoft
CVSS Score
9.3