Intrusion PreventionMS.IE.DOM.SubstringData.Buffer.Overflow
Description
This indicates an attack attempt against a heap-overrun vulnerability in Microsoft Internet Explorer.
The vulnerability is caused by an error when the vulnerable software handles a web page that contains certain unexpected method calls to HTML objects. It allows a remote attacker to execute arbitrary code by sending a specially crafted web page.
Affected Products
Internet Explorer 6 SP1 when installed on Microsoft Windows 2000 SP4
Internet Explorer 6 for Windows XP SP2 and SP3
Internet Explorer 6 for Windows XP Professional x64 Edition and SP2
Internet Explorer 6 for Windows Server 2003 SP1 and SP2
Internet Explorer 6 for Windows Server 2003 x64 Edition and SP2
Internet Explorer 6 for Windows Server 2003 with SP1 for Itanium-based Systems and SP2
Internet Explorer 7 for Windows XP SP2 and SP3
Internet Explorer 7 for Windows XP Professional x64 Edition and SP2
Internet Explorer 7 for Windows Server 2003 SP1 and SP2
Internet Explorer 7 for Windows Server 2003 x64 Edition and SP2
Internet Explorer 7 for Windows Server 2003 with SP1 for Itanium-based Systems and SP2
Internet Explorer 7 in Windows Vista and Internet Explorer 7 in Windows Vista SP1
Internet Explorer 7 in Windows Vista x64 Edition and SP1
Internet Explorer 7 in Windows Server 2008 for 32-bit Systems
Internet Explorer 7 in Windows Server 2008 for x64-based Systems
Internet Explorer 7 in Windows Server 2008 for Itanium-based Systems
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Refer to the vendor's web site for the suggested workaround:
http://www.microsoft.com/technet/security/Bulletin/ms08-031.mspx
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
| ID | 15653 |
| Created | Jun 10, 2008 |
| Updated | Nov 15, 2021 |
| Risk |
|
| CVE ID | CVE-2008-1442 |
| Exploit Prediction Score | 67.07% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | IE |