Signature Detail
Short Name |
HTTP:STC:ACTIVEX:CAPICOM |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Microsoft CAPICOM Certificates ActiveX |
Release Date |
2007/05/08 |
Update Number |
1213 |
Supported Platforms |
di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Microsoft CAPICOM Certificates ActiveX
This signature detects attempts to exploit a known vulnerability in Microsoft CAPICOM. An attacker can create malicious Web pages containing dangerous JavaScript, which if accessed by a victim, can allow the attacker to execute code on the client.
Extended Description
The Microsoft CAPICOM ActiveX control is prone to a remote code-execution vulnerability. An attacker could exploit this issue to execute code in the context of the user visiting a malicious web page.
Affected Products
- Microsoft BizTalk Server 2004 Developer Edition SP1
- Microsoft BizTalk Server 2004 Developer Edition SP2
- Microsoft BizTalk Server 2004 Enterprise Edition SP1
- Microsoft BizTalk Server 2004 Enterprise Edition SP2
- Microsoft BizTalk Server 2004 Partner Edition SP1
- Microsoft BizTalk Server 2004 Partner Edition SP2
- Microsoft BizTalk Server 2004 Standard Edition SP1
- Microsoft BizTalk Server 2004 Standard Edition SP2
- Microsoft Capicom ActiveX Control
- Microsoft Platform SDK : Capicom ActiveX Control
References
- BugTraq: 23782
- CVE: CVE-2007-0940
- URL: http://msdn2.microsoft.com/en-us/library/aa388154.aspx