SMTP: Microsoft Windows OLE CVE-2017-8487 Global Buffer Overflow

This signature detects attempts to exploit a known vulnerability in Microsoft Windows OLE. Successful exploitation could lead to arbitrary code execution within the security context of the target user.

Extended Description

Windows OLE in Windows XP and Windows Server 2003 allows an attacker to execute code when a victim opens a specially crafted file or program aka "Windows olecnv32.dll Remote Code Execution Vulnerability."

Affected Products

Microsoft windows_xp

References

BugTraq: 99013

CVE: CVE-2017-8487

Short Name
SMTP:MS-CVE-2017-8487-BO
Severity
Major
Recommended
True
Recommended Action
None
Category
SMTP
Keywords
Buffer CVE-2017-8487 Global Microsoft OLE Overflow Windows bid:99013
Release Date
07/13/2017
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3590
False Positive
Unknown
Vendors

Microsoft

CVSS Score

9.3

Found a potential security threat?