Intrusion PreventionMS.Windows.DHTML.Editing.Component.Remote.Code.Execution
Description
This indicates an attack attempt against a remote Code Execution vulnerability in the DHTML Editing Component ActiveX Control.
The vulnerability is caused by an error when the vulnerable component handles a specially crafted Web page. It allows a remote attacker to execute arbitrary code.
Affected Products
Microsoft Windows XP Service Pack 2
Microsoft Windows XP Service Pack 3
Microsoft Windows XP Professional x64 Edition Service Pack 2
Microsoft Windows Server 2003 Service Pack 2
Microsoft Windows Server 2003 x64 Edition Service Pack 2
Microsoft Windows Server 2003 with SP2 for Itanium-based Systems
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Denial of Service: Remote attackers can crash vulnerable systems
Recommended Actions
Apply the patch, available from the web site:
http://www.microsoft.com/technet/security/Bulletin/MS09-046.mspx
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2020-10-12 | 16.941 | Name:MS. DHTML. Editing. Component. ActiveX. Remote. Code. Execution:MS. Windows. DHTML. Editing. Component. Remote. Code. Execution |
| ID | 27888 |
| Created | Jul 18, 2011 |
| Updated | Mar 04, 2022 |
| Risk |
|
| CVE ID | CVE-2009-2519 |
| Exploit Prediction Score | 73.37% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |