HTTP: Microsoft Internet Explorer Info Disc CVE-2014-6340
This signature detects an attempt to exploit a known vulnerability against Microsoft Internet Explorer. Successful exploitation could allow an attacker to retrieve sensitive information about the target victim machine. The same can be exploited to leverage code execution.
Extended Description
Microsoft Internet Explorer 6 through 11 allows remote attackers to read content from a different (1) domain or (2) zone via a crafted web site, aka "Internet Explorer Cross-domain Information Disclosure Vulnerability."
Affected Products
Microsoft internet_explorer
References
CVE: CVE-2014-6340
Short Name
HTTP:STC:IE:2014-6340-INFO-DIS
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2014-6340 Disc Explorer Info Internet Microsoft
Release Date
11/10/2014
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
False Positive
Unknown
Vendors
Microsoft
CVSS Score
4.3