SSL: Microsoft Internet Explorer SChannel Exploit
This signature detects attempts to exploit a known vulnerability in Internet Explorer. Attackers can create malicious Web pages containing a malformed SSL negotiation, which if accessed by a victim, can allow the attacker to gain control of the victim's client browser.
Extended Description
The Microsoft Windows Schannel security package is prone to a remote code-execution vulnerability. This vulnerability occurs when processing and validating server-sent digital signatures by the client application. A remote attacker could exploit this issue by convincing a victim to visit a malicious website. Remote code execution is possible, but may be extremely difficult. In most cases, denial-of-service conditions will occur.
Affected Products
Nortel_networks self-service_speech_server,Microsoft windows_server_2003_x64
Short Name
SSL:MALFORMED-SCHANNEL-NEGO
Severity
Critical
Recommended
False
Recommended Action
None
Category
SSL
Keywords
CVE-2007-2218 Exploit Explorer Internet Microsoft SChannel bid:24416
Release Date
06/13/2007
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3728
False Positive
Occasionally
Vendors
Nortel_networks
Microsoft
Avaya
CVSS Score
9.3