Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 HTTP:STC:IE:EOT-WEBFONTS-DL

Severity

 Minor

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 Internet Explorer WebFonts File Download

Release Date

 2006/01/10

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Internet Explorer WebFonts File Download


This signature detects the transfer of an embedded font over HTTP (eot file). This file format is known to contain some recognized vulnerabilities, which can result in a denial-of-service condition on the client system or arbitrary remote code execution. Internet Explorer is known to be vulnerable to this kind of attack.

Extended Description

Microsoft Windows is susceptible to a remotely exploitable buffer-overflow vulnerability. This issue is due to the software's failure to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. This issue allows remote attackers to execute arbitrary machine code in the context of the vulnerable software on the targeted user's computer.

Affected Products

  • Avaya definityone_media_servers R10
  • Avaya definityone_media_servers R11
  • Avaya definityone_media_servers R12
  • Avaya definityone_media_servers R6
  • Avaya definityone_media_servers R7
  • Avaya definityone_media_servers R8
  • Avaya definityone_media_servers R9
  • Avaya definityone_media_servers
  • Avaya ip600_media_servers R10
  • Avaya ip600_media_servers R11
  • Avaya ip600_media_servers R12
  • Avaya ip600_media_servers R6
  • Avaya ip600_media_servers R7
  • Avaya ip600_media_servers R8
  • Avaya ip600_media_servers R9
  • Avaya ip600_media_servers
  • Avaya modular_messaging_(mas)
  • Avaya s8100_media_servers R10
  • Avaya s8100_media_servers R11
  • Avaya s8100_media_servers R12
  • Avaya s8100_media_servers R6
  • Avaya s8100_media_servers R7
  • Avaya s8100_media_servers R8
  • Avaya s8100_media_servers R9
  • Avaya s8100_media_servers
  • Microsoft windows_2000_advanced_server SP1
  • Microsoft windows_2000_advanced_server SP2
  • Microsoft windows_2000_advanced_server SP3
  • Microsoft windows_2000_advanced_server SP4
  • Microsoft windows_2000_advanced_server
  • Microsoft windows_2000_datacenter_server SP1
  • Microsoft windows_2000_datacenter_server SP2
  • Microsoft windows_2000_datacenter_server SP3
  • Microsoft windows_2000_datacenter_server SP4
  • Microsoft windows_2000_datacenter_server
  • Microsoft windows_2000_professional SP1
  • Microsoft windows_2000_professional SP2
  • Microsoft windows_2000_professional SP3
  • Microsoft windows_2000_professional SP4
  • Microsoft windows_2000_professional
  • Microsoft windows_2000_server SP1
  • Microsoft windows_2000_server SP2
  • Microsoft windows_2000_server SP3
  • Microsoft windows_2000_server SP4
  • Microsoft windows_2000_server
  • Microsoft windows_98
  • Microsoft windows_98se
  • Microsoft windows_me
  • Microsoft windows_nt 3.5
  • Microsoft windows_nt 3.5.1
  • Microsoft windows_nt 3.5.1 SP1
  • Microsoft windows_nt 3.5.1 SP2
  • Microsoft windows_nt 3.5.1 SP3
  • Microsoft windows_nt 3.5.1 SP4
  • Microsoft windows_nt 3.5.1 SP5
  • Microsoft windows_nt 3.5.1 SP5 alpha
  • Microsoft windows_nt 4.0
  • Microsoft windows_nt 4.0 alpha
  • Microsoft windows_nt 4.0 SP1
  • Microsoft windows_nt 4.0 SP1 alpha
  • Microsoft windows_nt 4.0 SP2
  • Microsoft windows_nt 4.0 SP2 alpha
  • Microsoft windows_nt 4.0 SP3
  • Microsoft windows_nt 4.0 SP3 alpha
  • Microsoft windows_nt 4.0 SP4
  • Microsoft windows_nt 4.0 SP4 alpha
  • Microsoft windows_nt 4.0 SP5
  • Microsoft windows_nt 4.0 SP5 alpha
  • Microsoft windows_nt 4.0 SP6
  • Microsoft windows_nt 4.0 SP6a
  • Microsoft windows_nt 4.0 SP6a alpha
  • Microsoft windows_nt 4.0 SP6 alpha
  • Microsoft windows_nt_enterprise_server 4.0
  • Microsoft windows_nt_enterprise_server 4.0 SP1
  • Microsoft windows_nt_enterprise_server 4.0 SP2
  • Microsoft windows_nt_enterprise_server 4.0 SP3
  • Microsoft windows_nt_enterprise_server 4.0 SP4
  • Microsoft windows_nt_enterprise_server 4.0 SP5
  • Microsoft windows_nt_enterprise_server 4.0 SP6
  • Microsoft windows_nt_enterprise_server 4.0 SP6a
  • Microsoft windows_nt_server 4.0
  • Microsoft windows_nt_server 4.0 SP1
  • Microsoft windows_nt_server 4.0 SP2
  • Microsoft windows_nt_server 4.0 SP3
  • Microsoft windows_nt_server 4.0 SP4
  • Microsoft windows_nt_server 4.0 SP5
  • Microsoft windows_nt_server 4.0 SP6
  • Microsoft windows_nt_server 4.0 SP6a
  • Microsoft windows_nt_terminal_server 4.0
  • Microsoft windows_nt_terminal_server 4.0 alpha
  • Microsoft windows_nt_terminal_server 4.0 SP1
  • Microsoft windows_nt_terminal_server 4.0 SP2
  • Microsoft windows_nt_terminal_server 4.0 SP3
  • Microsoft windows_nt_terminal_server 4.0 SP4
  • Microsoft windows_nt_terminal_server 4.0 SP5
  • Microsoft windows_nt_terminal_server 4.0 SP6
  • Microsoft windows_nt_terminal_server 4.0 SP6a
  • Microsoft windows_nt_workstation 4.0
  • Microsoft windows_nt_workstation 4.0 SP1
  • Microsoft windows_nt_workstation 4.0 SP2
  • Microsoft windows_nt_workstation 4.0 SP3
  • Microsoft windows_nt_workstation 4.0 SP4
  • Microsoft windows_nt_workstation 4.0 SP5
  • Microsoft windows_nt_workstation 4.0 SP6
  • Microsoft windows_nt_workstation 4.0 SP6a
  • Microsoft windows_server_2003_datacenter_edition SP1
  • Microsoft windows_server_2003_datacenter_edition
  • Microsoft windows_server_2003_datacenter_edition_itanium SP1
  • Microsoft windows_server_2003_datacenter_edition_itanium
  • Microsoft windows_server_2003_datacenter_x64_edition
  • Microsoft windows_server_2003_enterprise_edition SP1
  • Microsoft windows_server_2003_enterprise_edition
  • Microsoft windows_server_2003_enterprise_edition_itanium SP1
  • Microsoft windows_server_2003_enterprise_edition_itanium
  • Microsoft windows_server_2003_enterprise_x64_edition
  • Microsoft windows_server_2003_standard_edition SP1
  • Microsoft windows_server_2003_standard_edition
  • Microsoft windows_server_2003_standard_x64_edition
  • Microsoft windows_server_2003_web_edition SP1
  • Microsoft windows_server_2003_web_edition
  • Microsoft windows_xp_home SP1
  • Microsoft windows_xp_home SP2
  • Microsoft windows_xp_home
  • Microsoft windows_xp_media_center_edition SP1
  • Microsoft windows_xp_media_center_edition SP2
  • Microsoft windows_xp_media_center_edition
  • Microsoft windows_xp_professional SP1
  • Microsoft windows_xp_professional SP2
  • Microsoft windows_xp_professional
  • Microsoft windows_xp_professional_x64_edition
  • Microsoft windows_xp_tablet_pc_edition SP1
  • Microsoft windows_xp_tablet_pc_edition SP2
  • Microsoft windows_xp_tablet_pc_edition
  • Nortel_networks callpilot 1.0.7
  • Nortel_networks callpilot 2.0.0
  • Nortel_networks callpilot 200I
  • Nortel_networks callpilot 201I
  • Nortel_networks centrex_ip_client_manager 2.5.0
  • Nortel_networks centrex_ip_client_manager 7.0.0
  • Nortel_networks centrex_ip_client_manager 8.0.0
  • Nortel_networks centrex_ip_client_manager
  • Nortel_networks contact_center
  • Nortel_networks ip_softphone_2050
  • Nortel_networks mcs_pc_client
  • Nortel_networks optivity_telephony_manager_for_sl-100
  • Nortel_networks optivity_telephony_manager_(otm)
  • Nortel_networks self-service

References

  • BugTraq: 16194
  • CVE: CVE-2006-0010

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out