Short Name |
HTTP:STC:ACTIVEX:MDAC-DATASPACE |
---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Internet Explorer Unassociated ActiveX Data Object |
Release Date |
2006/04/11 |
Update Number |
1213 |
Supported Platforms |
di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects HTTP traffic containing vulnerable MDAC ActiveX Data Objects. Malicious Web sites can utilize these Objects to execute code through the target's browser.
The Microsoft MDAC RDS.Dataspace ActiveX control is vulnerable to remote code execution. An attacker could exploit this issue to execute code in the context of the user visiting a malicious web page.