MS.IE.WMF.Handling.Memory.Corruption
Description
This indicates a possible exploit of a buffer overflow vulnerability in Microsoft's WMF parsing, as used in Internet Explorer. The exploit can be triggered via a crafted WMF file with a manipulated header size, possibly involving an integer overflow. It may allow attackers to cause a denial of service and possibly execute code
Affected Products
Internet Explorer 5.01 SP4 on Windows 2000 SP4,
Internet Explorer 5.5 SP2 on Windows Millennium,
and possibly other versions.
Impact
Denial of Service.
System compromise: remote code execution.
Recommended Actions
Upgrade to Microsoft Internet Explorer 6.0 SP1 or later.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |