MS.IE.JavaScript.Window.Function.Remote.Memory.Corruption
Description
This indicates a possible attempt to exploit a remote Code Execution vulnerability in Microsoft Internet Explorer.
The vulnerability presents itself when the browser uses a JavaScript "onLoad" handler in conjunction with an improperly initialized "window()" JavaScript function. It can be exploited to execute arbitrary remote code in the context of the user running the affected application. Failed exploitation attempts will result in the application crashing.
Affected Products
Microsoft Internet Explorer 6.0 SP2
Microsoft Internet Explorer 6.0 SP1
Microsoft Internet Explorer 6.0
Microsoft Internet Explorer 5.5 SP2
Microsoft Internet Explorer 5.5 SP1
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 5.0.1 SP4
Microsoft Internet Explorer 5.0.1 SP3
Microsoft Internet Explorer 5.0.1 SP2
Microsoft Internet Explorer 5.0.1 SP1
Microsoft Internet Explorer 5.0.1
Impact
System Compromise: Execution of arbitrary code.
Denial of Service.
Recommended Actions
Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS06-042.
http://www.microsoft.com/technet/security/bulletin/ms06-042.mspx
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |