MS.Windows.Authentication.Reflection.Code.Execution
Description
This indicates an attack attempt against an Authentication Reflection vulnerability in Microsoft Internet Explorer and Windows HTTP services.
The vulnerability is caused by a design weakness in the authentication challenge/response mechanism.
Affected Products
Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 6
Microsoft Internet Explorer 7
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Vista
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the latest update from the vendor.
http://www.microsoft.com/technet/security/bulletin/ms09-013.mspx
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |