HTTP: Microsoft Internet Explorer CVE-2016-3298 Information Disclosure
This signature detects attempts to exploit a known flaw in Microsoft Internet Explorer. A successful attack would result in information disclosure.
Extended Description
Microsoft Internet Explorer 9 through 11 and the Internet Messaging API in Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allow remote attackers to determine the existence of arbitrary files via a crafted web site, aka "Internet Explorer Information Disclosure Vulnerability."
Affected Products
Microsoft windows_server_2008
References
CVE: CVE-2016-3298
Short Name
HTTP:STC:IE:CVE-2016-3298-ID
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2016-3298 Disclosure Explorer Information Internet Microsoft
Release Date
10/11/2016
Supported Platforms
mx-19.3
vmx-19.3
vsrx-19.2
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vmx-19.4
mx-19.4
srxevo-25.4
vsrx-26.2
srx-26.2
srx-branch-26.2
vsrx3bsd-26.2
mx-12.3
srx-12.3
srx-branch-12.3
vsrx-12.3
Sigpack Version
3719
False Positive
Unknown
Vendors
Microsoft
CVSS Score
2.6