MS.Windows.MFC.Document.Title.Overflow
Description
This indicates an attack attempt to exploit a remote Code Execution vulnerability in Microsoft Windows MFC library.
The vulnerability is caused by an error when handling a malformed zip file. It can be exploited via a crafted zip file, leading to remote code execution.
Affected Products
Microsoft Windows Server 2003
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows 7
Microsoft Windows Server 2008
Microsoft Windows Vista
Trident Software PowerZip 7.2 Build 4010
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://technet.microsoft.com/library/security/MS10-074
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |