HTTP: Internet Explorer FRAME Tag Flood
This signature detects attempts to exploit a known vulnerability in Microsoft Internet Explorer 6. By including an excessive number of FRAME tags in a maliciously crafted HTML document, attackers can force IE to download and run a remote executable, enabling the attacker to gain administrator access.
Extended Description
Remote attackers could exploit this vulnerability to crash an affected machine or to execute arbitrary code with the privileges of the current user.
References
URL: http://www.securitytracker.com/alerts/2003/May/1006774.html
Short Name
HTTP:STC:IE:FRAME-FLOOD
Severity
Warning
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Explorer FRAME Flood Internet Tag
Release Date
06/05/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown