Intrusion Prevention

MS.IE.IMG.XML.Elements.Remote.DoS

Description

This indicates a possible exploit of a Denial of Service vulnerability in Microsoft Internet Explorer. The vulnerability could allow remote attackers to cause a denial of service or crash a web browser session. An attacker may entice a victim to view a web page that contains a bad IMG element combined with a bad XML block. This html code can by hidden inside a web page to cause a Denial of Service.

Affected Products

Microsoft Internet Explorer 6.0 SP1 and earlier versions.

Impact

Denial of Service.

Recommended Actions

Apply appropriate patch to the system from the vendor if available. If patch is not available, change action to drop_session without affecting legitimate traffic for blocking further attacks.

Other References

1