Intrusion Prevention

MS.IE.OnUnload.JavaScript.Browser.Entrapment

Description

This indicates an attack attempt against a web page spoofing vulnerability
in Microsoft Internet Explorer.
A vulnerability has been identified in Microsoft Internet Explorer which allows attackers to trap users at a particular webpage and spoof page transitions. It can be exploited by remote attackers via a crafted page designed to spoof the contents and origin of another Web page.

Affected Products

Microsoft Internet Explorer 6.0 SP2
Microsoft Internet Explorer 6.0 SP1
Microsoft Internet Explorer 6.0
Microsoft Internet Explorer 7.0

Impact

Information Spoofing: Remote attackers can spoof datas of vulnerable systems.

Recommended Actions

Apply patch, available from the website:
http://www.microsoft.com/technet/security/Bulletin/ms07-057.mspx

CVE References

CVE-2007-1091