HTTP: Internet Explorer mshtml.dll Buffer Overflow

This signature detects attempts to exploit a known vulnerability against the Microsoft Internet Explorer mshtml.dll file, a shared library for parsing HTML. Attackers can host a Web site that contains malicious code to compromise the computers of IE users that access it.

Extended Description

Due to a flaw in IE's implementation of an HTML directive, it is possible for a remote attacker to execute arbitrary code on a user's system. MSIE supports a directive to embed document files in webpages. A buffer overflow condition exists in this feature that may allow for remote attackers to execute arbitrary code on client systems. This vulnerability may be exploited to execute arbitrary code through a maliciously constructed webpage or HTML email. Any arbitary code will be executed within the security context of the user running the client. Successful exploitation of this issue could result in a compromise of the host.

Affected Products

Microsoft internet_explorer

Short Name
HTTP:STC:IE:IE-MSHTML-OF
Severity
Warning
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Buffer CA-2002-04 CVE-2002-0022 Explorer Internet Overflow bid:4080 mshtml.dll
Release Date
04/22/2003
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3375
False Positive
Unknown
Vendors

Microsoft

CVSS Score

7.5

Found a potential security threat?