Signature Detail

Short Name	HTTP:STC:DL:MSPROJECT-MEM
Severity	High
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	Microsoft Project Invalid Memory Pointer Code Execution
Release Date	2010/09/29
Update Number	1782
Supported Platforms	idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Microsoft Project Invalid Memory Pointer Code Execution

This signature detects attempts to exploit a known vulnerability against Microsoft Project. A successful attack can lead to arbitrary code execution.

Extended Description

Microsoft Project is prone to a remote code-execution vulnerability. An attacker may exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result in denial-of-service conditions.

Affected Products

Microsoft Project 2000 SR1
Microsoft Project 2000
Microsoft Project 2002 SP1
Microsoft Project 2002
Microsoft Project 2003 SP2
Microsoft Project 2003

References

BugTraq: 28607
CVE: CVE-2008-1088

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Microsoft Project Invalid Memory Pointer Code Execution

Extended Description

Affected Products

References