MS.IE.Install.Engine.ActiveX.Control.Buffer.Overflow
Description
It indicates an attacker attempted a Buffer Overflow attack against the Microsoft Internet Explorer Install Engine ActiveX control A buffer overflow vulnerability exists in the Install Engine ActiveX control which is part of Microsoft Internet Explorer. There is a lack of sufficient boundary checking on the arguments to the control which lead to a heap overflow, This can be leveraged by an attacker to execute arbitrary code.
Affected Products
Microsoft Internet Explorer 6.0 SP1 and earlier versions.
Impact
Compromise of the affected system.
Recommended Actions
Microsoft has issued a critical update for this vulnerability. Please apply MS04-038 to fix the vulnerability.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2021-06-15 | 18.098 |