SMTP: Microsoft Internet Explorer MSHTML Double Free Remote Code Execution
This signature detects attempts to exploit a known vulnerability against Microsoft Internet Explorer. A successful attack can lead to arbitrary code execution.
Extended Description
Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory in certain circumstances involving use of Microsoft Word to read Word documents, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "Uninitialized Memory Corruption Vulnerability."
References
CVE: CVE-2010-3331
Short Name
SMTP:MSHTML-IE-DBLFREE
Severity
Major
Recommended
False
Recommended Action
None
Category
SMTP
Keywords
CVE-2010-3331 Code Double Execution Explorer Free Internet MSHTML Microsoft Remote
Release Date
11/15/2016
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3659
False Positive
Unknown
CVSS Score
9.3