Intrusion Prevention

MS.IE.DXImageTransform.Vuln

Description

This indicates a possible attempt to exploit an arbitrary code-execution vulnerability in Microsoft Internet Explorer.
The vulnerability is located in the DXImageTransform.Microsoft.Light ActiveX control. It may allow remote attackers to execute arbitrary code. Failed exploit attempts will likely cause the application to crash.

Affected Products

Microsoft Internet Explorer 6.0 SP1 and earlier versions

Impact

System compromise

Recommended Actions

Microsoft has released a critical update in the Microsoft Security Bulletin MS06-021 that fixes the vulnerability.