This indicates a possible exploit of a Denial of Service vulnerability in Microsoft Internet Explorer. The vulnerability could allow remote attackers to cause a denial of service or crash a web browser session. An attacker may entice a victim to view a web page that contains a bad IMG element combined with a bad XML block. This html code can by hidden inside a web page to cause a Denial of Service.
Microsoft Internet Explorer 6.0 SP1 and earlier versions.
Denial of Service.
Apply appropriate patch to the system from the vendor if available. If patch is not available, change action to drop_session without affecting legitimate traffic for blocking further attacks.