Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:STC:IE:AUTH-REFLECTION |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Microsoft Internet Explorer and HTTP Services Authentication Reflection Code Execution |
Release Date |
2011/12/21 |
Update Number |
2051 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Microsoft Internet Explorer and HTTP Services Authentication Reflection Code Execution
This signature detects attempts to exploit a known authentication reflection vulnerability against Microsoft Internet Explorer and Windows HTTP services. A successful attack can lead to arbitrary code execution.
Extended Description
Windows HTTP Services (aka WinHTTP) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008; and WinINet in Microsoft Internet Explorer 5.01 SP4, 6 SP1, 6 and 7 on Windows XP SP2 and SP3, 6 and 7 on Windows Server 2003 SP1 and SP2, 7 on Windows Vista Gold and SP1, and 7 on Windows Server 2008; allows remote web servers to capture and replay NTLM credentials, and execute arbitrary code, via vectors related to absence of a "credential-reflection protections" opt-in step, aka "Windows HTTP Services Credential Reflection Vulnerability" and "WinINet Credential Reflection Vulnerability."
Affected Products
- Microsoft ie 5.01
- Microsoft ie 6.0
- Microsoft internet_explorer 6
- Microsoft internet_explorer 7
- Microsoft windows_2000 *
- Microsoft windows_server_2003 *
- Microsoft windows_server_2008 *
- Microsoft windows_vista *
- Microsoft windows_vista gold
- Microsoft windows_xp *
References
- BugTraq: 34439
- CVE: CVE-2009-0550