MS.IE.DHTML.Object.Method.Memory.Corruption
Description
This indicates an attempt to exploit a remote code execution vulnerability in Microsoft Internet Explorer.
The vulnerability is a result of the way that Internet Explorer displays a web page that contains certain unexpected method calls to HTML objects. This leads to system memory being corrupted in such a way that an attacker can execute arbitrary code if a user visits a malicious Web site.
Affected Products
IE6 SP1 for Microsoft Windows 2000 SP4
IE6 for Windows XP SP2
IE6 for Windows XP Prof x64 Edition and Windows XP Prof x64 Edition SP2
IE6 for Windows Server 2003 SP1 and Windows Server 2003 SP2
IE6 for Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition SP2
IE6 for Windows Server 2003 with SP1 for Itanium-based Systems
IE6 for Windows Server 2003 with SP2 for Itanium-based Systems
IE7 for Windows XP SP2
IE7 for Windows XP Prof x64 Edition
IE7 for Windows XP Prof x64 Edition SP2
IE7 for Windows Server 2003 SP1 and Windows Server 2003 SP2
IE7 for Windows Server 2003 x64 Edition
IE7 for Windows Server 2003 x64 Edition SP2
IE7 for Windows Server 2003 with SP1 for Itanium-based Systems
IE7 for Windows Server 2003 with SP2 for Itanium-based Systems
IE7 in Windows Vista
IE7 in Windows Vista x64 Edition
Impact
System compromise: remote code execution.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |