HTTP: Microsoft OLE Structure Remote Code Execution
This signature detects attempts to exploit a known vulnerability against Microsoft OLE Structure. A successful attack can lead to arbitrary code execution.
Extended Description
Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 do not properly handle OLE objects in memory, which allows remote attackers to execute arbitrary code via a crafted object in a file, aka "OLE Property Vulnerability."
Affected Products
Microsoft windows_server_2003
Short Name
HTTP:STC:DL:OLE-STRUCTURE-RCE
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2011-3400 Code Execution Microsoft OLE Remote Structure bid:50977
Release Date
12/12/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
False Positive
Unknown
Vendors
Microsoft
CVSS Score
9.3