Signature Detail
Short Name |
HTTP:STC:DL:SEARCHMS-EXEC |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Microsoft Windows Explorer Search-ms File Parsing Code Execution |
Release Date |
2010/10/11 |
Update Number |
1789 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Microsoft Windows Explorer Search-ms File Parsing Code Execution
This signature detects attempts to exploit a known vulnerability against Microsoft Windows Explorer. A successful attack can lead to arbitrary code execution.
Extended Description
Microsoft Windows Explorer is prone to a remote code-execution vulnerability. Successfully exploiting this issue will allow attackers to execute arbitrary code with the privileges of the user running the affected application.
Affected Products
- Avaya Messaging Application Server MM 1.1
- Avaya Messaging Application Server MM 2.0
- Avaya Messaging Application Server MM 3.0
- Avaya Messaging Application Server MM 3.1
- Avaya Messaging Application Server
- Microsoft Windows Server 2008 Datacenter Edition Release Candidate
- Microsoft Windows Server 2008 Datacenter Edition
- Microsoft Windows Server 2008 Enterprise Edition Release Candidate
- Microsoft Windows Server 2008 Enterprise Edition
- Microsoft Windows Server 2008 for 32-bit Systems
- Microsoft Windows Server 2008 for Itanium-based Systems
- Microsoft Windows Server 2008 for x64-based Systems
- Microsoft Windows Server 2008 Standard Edition Release Candidate
- Microsoft Windows Server 2008 Standard Edition
- Microsoft Windows Vista Enterprise
- Microsoft Windows Vista Enterprise SP1
- Microsoft Windows Vista Home Basic
- Microsoft Windows Vista Home Basic SP1
- Microsoft Windows Vista Home Premium
- Microsoft Windows Vista Home Premium SP1
- Microsoft Windows Vista SP1
- Microsoft Windows Vista Ultimate
- Microsoft Windows Vista Ultimate SP1
- Microsoft Windows Vista
- Microsoft Windows Vista Enterprise 64-bit edition SP1
- Microsoft Windows Vista Enterprise 64-bit edition
- Microsoft Windows Vista Home Basic 64-bit edition SP1
- Microsoft Windows Vista Home Basic 64-bit edition
- Microsoft Windows Vista Home Premium 64-bit edition SP1
- Microsoft Windows Vista Home Premium 64-bit edition
- Microsoft Windows Vista Ultimate 64-bit edition SP1
- Microsoft Windows Vista Ultimate 64-bit edition
References
- BugTraq: 30109
- CVE: CVE-2008-1435