Signature Detail

HTTP: Microsoft OLE Structure Remote Code Execution

This signature detects attempts to exploit a known vulnerability against Microsoft OLE Structure. A successful attack can lead to arbitrary code execution.

Extended Description

Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the application. Failed exploit attempts may result in a denial-of-service condition.

Affected Products

• Microsoft Windows Server 2003 SP2
• Microsoft Windows Server 2003 Sp2 Compute Cluster
• Microsoft Windows Server 2003 Sp2 Datacenter
• Microsoft Windows Server 2003 Sp2 Enterprise
• Microsoft Windows Server 2003 Sp2 Storage
• Microsoft Windows Server 2003 Sp2 X64
• Microsoft Windows Server 2003 Datacenter Edition Itanium SP1 Beta 1
• Microsoft Windows Server 2003 Datacenter x64 Edition SP2
• Microsoft Windows Server 2003 Enterprise Edition Itanium Sp2 Itanium
• Microsoft Windows Server 2003 Enterprise x64 Edition SP2
• Microsoft Windows Server 2003 Itanium SP2
• Microsoft Windows Server 2003 Standard Edition SP2
• Microsoft Windows Server 2003 Web Edition SP2
• Microsoft Windows Server 2003 x64 SP2
• Microsoft Windows XP Embedded SP3
• Microsoft Windows XP Home SP3
• Microsoft Windows XP Media Center Edition SP3
• Microsoft Windows XP Professional SP3
• Microsoft Windows XP Professional x64 Edition SP2
• Microsoft Windows XP Tablet PC Edition SP3

References

• BugTraq: 50977
• CVE: CVE-2011-3400