HTTP: Microsoft Internet Explorer DHTML Object Memory Corruption
This signature detects attempts to exploit a known vulnerability against Microsoft Internet Explorer DHTML Object. Attackers can leverage this vulnerability to execute arbitrary code on the victim.
Extended Description
Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Successful exploits will compromise the application and possibly the computer. Failed attacks may cause denial-of-service conditions.
Affected Products
Avaya messaging_application_server,Nortel_networks callpilot
Short Name
HTTP:STC:IE:DHTML-OBJ-MC
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2009-1141 Corruption DHTML Explorer Internet Memory Microsoft Object bid:35198
Release Date
07/21/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Nortel_networks
Avaya
Microsoft
CVSS Score
9.3