SCAN: Core Impact Media Player IE Zone Bypass Exploit
This signature detects access to a Web page that is infected by the CORE Impact Media Player Internet Explorer Zone Bypass exploit. The Level0 CORE Impact agent can infect target hosts that visit the Web page.
Extended Description
It has been reported by a reliable source that a method exists for evading the Zone based access control model used by Microsoft Internet Explorer. This technique reportedly relies on a flaw in Windows Media Player that allows for untrusted content to access the Local Zone.
Affected Products
Microsoft windows_media_player
Short Name
SCAN:CORE:MP-IE-ZONE-BYPASS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
SCAN
Keywords
Bypass CVE-2003-0838 Core Exploit IE Impact Media Player Zone bid:8263
Release Date
03/01/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Microsoft
CVSS Score
7.5