HTTP: Internet Explorer CVE-2008-4258 Memory Corruption
This signature detects attempts to exploit a known vulnerability against Internet Explorer. An attacker can create a malicious Web site containing dangerous ActiveX objects, which if accessed by a victim, allows the attacker to take control of the victim's client browser.
Extended Description
Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Successful exploits will compromise the application and possibly the underlying computer. Failed attacks will cause denial-of-service conditions.
Affected Products
Nortel_networks self-service_media_processing_server,Microsoft internet_explorer
References
BugTraq: 32596
CVE: CVE-2008-4258
URL: http://www.microsoft.com/technet/security/Bulletin/MS08-073.mspx
Short Name
HTTP:STC:IE:CVE-2008-4258-MC
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2008-4258 CVE-2016-0113 Corruption Explorer Internet Memory bid:32596
Release Date
12/09/2008
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3725
False Positive
Unknown
Vendors
Nortel_networks
Microsoft
CVSS Score
8.5
7.6