Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	HTTP:STC:IE:FULLMEM-RELOAD
Severity	Major
Recommended	No
Category	HTTP
Keywords	Internet Explorer Reload Memory Overflow
Release Date	2005/11/21
Update Number	1213
Supported Platforms	di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Internet Explorer Reload Memory Overflow

This signature detects attempts to exploit a known vulnerability against Microsoft Internet Explorer. An attacker can entice a victim to browse to a page with malicious JavaScript in an HTTP session. A successful attack can allow execution of arbitrary code.

Extended Description

Microsoft Internet Explorer is affected by a remote code execution vulnerability. This vulnerability presents itself when the browser handles a JavaScript 'onLoad' handler in conjunction with an improperly initialized 'window()' JavaScript function. This issue may be exploited to execute arbitrary remote code in the context of the user running the affected application. Failed exploitation attempts likely result in the application crashing.

Affected Products

Avaya definityone_media_servers R10
Avaya definityone_media_servers R11
Avaya definityone_media_servers R12
Avaya definityone_media_servers R6
Avaya definityone_media_servers R7
Avaya definityone_media_servers R8
Avaya definityone_media_servers R9
Avaya definityone_media_servers
Avaya ip600_media_servers R10
Avaya ip600_media_servers R11
Avaya ip600_media_servers R12
Avaya ip600_media_servers R6
Avaya ip600_media_servers R7
Avaya ip600_media_servers R8
Avaya ip600_media_servers R9
Avaya ip600_media_servers
Avaya modular_messaging_(mas)
Avaya s8100_media_servers R10
Avaya s8100_media_servers R11
Avaya s8100_media_servers R12
Avaya s8100_media_servers R6
Avaya s8100_media_servers R7
Avaya s8100_media_servers R8
Avaya s8100_media_servers R9
Avaya s8100_media_servers
Avaya unified_communications_center_s3400
Microsoft internet_explorer 5.0.1
Microsoft internet_explorer 5.0.1 For Windows 2000
Microsoft internet_explorer 5.0.1 SP1
Microsoft internet_explorer 5.0.1 SP2
Microsoft internet_explorer 5.0.1 SP3
Microsoft internet_explorer 5.0.1 SP4
Microsoft internet_explorer 5.5
Microsoft internet_explorer 5.5 SP1
Microsoft internet_explorer 5.5 SP2
Microsoft internet_explorer 6.0
Microsoft internet_explorer 6.0 SP1

References

BugTraq: 13799
CVE: CVE-2005-1790

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Internet Explorer Reload Memory Overflow

Extended Description

Affected Products

References