This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
HTTP:STC:IE:HTML-SANITZ
|
Severity |
Minor
|
Recommended |
No
|
Category |
HTTP
|
Keywords |
Microsoft Internet Explorer HTML Sanitization Vulnerability
|
Release Date |
2012/06/11
|
Update Number |
2149
|
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
HTTP: Microsoft Internet Explorer HTML Sanitization Vulnerability
This signature detects attempts to exploit a known vulnerability against Microsoft Internet Explorer. A successful attack can lead to arbitrary code execution.
Extended Description
Microsoft Internet Explorer and Microsoft Lync are prone to an information-disclosure vulnerability.
Attackers can exploit this issue to obtain sensitive information that may aid in further attacks.
Affected Products
- Microsoft groove_server_2010 SP1
- Microsoft groove_server_2010
- Microsoft infopath 2007 SP3
- Microsoft infopath 2010 (32-bit editions)
- Microsoft infopath 2010 (64-bit editions)
- Microsoft infopath 2010 SP1 (32-bit editions)
- Microsoft infopath_2007 SP2
- Microsoft internet_explorer 8
- Microsoft internet_explorer 9
- Microsoft lync_2010
- Microsoft lync_2010_attendant_(32-bit)
- Microsoft lync_2010_attendant_(64-bit)
- Microsoft lync_2010_attendee
- Microsoft office_communicator_2007 R2
- Microsoft office_sharepoint_server_2007 SP2
- Microsoft office_sharepoint_server_2007 SP2 (64-bit)
- Microsoft office_sharepoint_server_2007 SP3
- Microsoft office_sharepoint_server_2007 SP3 (64-bit)
- Microsoft office_web_apps_2010 SP1
- Microsoft office_web_apps_2010
- Microsoft sharepoint_foundation_2010 SP1
- Microsoft sharepoint_foundation_2010
- Microsoft sharepoint_server_2010 SP1
- Microsoft sharepoint_server_2010_enterprise_edition
- Microsoft sharepoint_server_2010_standard_edition
- Microsoft windows_sharepoint_services 3.0 SP2
References