Signature Detail
Short Name |
HTTP:STC:IE:CREATETEXTRANGE |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Internet Explorer "createTextRange()" Code Execution |
Release Date |
2006/03/24 |
Update Number |
1213 |
Supported Platforms |
di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Internet Explorer "createTextRange()" Code Execution
This signature detects the download of a maliciously crafted HTML document containing an invalid use of the createTextRange JavaScript function. This type of page can allow an attacker to execute arbitrary code on the client's system heap.
Extended Description
Microsoft Internet Explorer is susceptible to a remote code-execution vulnerability. This issue is due to a flaw that results in an invalid table-pointer dereference. Remote attackers may exploit this issue to crash affected browsers or to execute arbitrary machine code in the context of affected users. Microsoft has reported that this issue does not affect the March 20, 2006 release of Internet Explorer 7 Beta 2 Preview.
Affected Products
- Microsoft Internet Explorer 5.0.1 SP1
- Microsoft Internet Explorer 5.0.1 SP2
- Microsoft Internet Explorer 5.0.1 SP3
- Microsoft Internet Explorer 5.0.1 SP4
- Microsoft Internet Explorer 6.0
- Microsoft Internet Explorer 6.0 SP1
- Microsoft Internet Explorer 7.0 Beta2
References