SMTP: Microsoft Internet Explorer CElement Remote Code Execution
This signature detects attempts to exploit a known vulnerability against Microsoft Internet Explorer. A successful attack can lead to arbitrary code execution.
Extended Description
Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, aka "DOM Modification Memory Corruption Vulnerability."
References
CVE: CVE-2011-1256
Short Name
SMTP:VULN:CELEMENT-RCE
Severity
Major
Recommended
False
Recommended Action
None
Category
SMTP
Keywords
CElement CVE-2011-1256 CVE-2012-1260 Code Execution Explorer Internet Microsoft Remote
Release Date
10/25/2016
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3404
False Positive
Unknown
CVSS Score
9.3
4.3