Intrusion Prevention

MS.IE.Error.Handling.Memory.Corruption

Description

This indicates an attack attempt against a memory corruption vulnerability in Microsoft Internet Explorer.
The vulnerability is caused by an error when the vulnerable software handles a crafted web page. It allows a remote attacker to execute arbitrary code.

Affected Products

Microsoft Internet Explorer 5.01 Service Pack 4
Microsoft Internet Explorer 6 Service Pack 1
Microsoft Internet Explorer 6
Windows Internet Explorer 7

Impact

Privilege escalation, remote code execution.

Recommended Actions

Apply the patch, available from the following web site:
http://www.microsoft.com/technet/security/bulletin/ms07-057.mspx

CVE References

CVE-2007-3893