Signature Detail

HTTP: Internet Explorer CVE-2008-4258 Memory Corruption

This signature detects attempts to exploit a known vulnerability against Internet Explorer. An attacker can create a malicious Web site containing dangerous ActiveX objects, which if accessed by a victim, allows the attacker to take control of the victim's client browser.

Extended Description

Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Successful exploits will compromise the application and possibly the underlying computer. Failed attacks will cause denial-of-service conditions.

Affected Products

• HP Storage Management Appliance 2.1
• Microsoft Internet Explorer 5.0.1
• Microsoft Internet Explorer 5.0.1 SP1
• Microsoft Internet Explorer 5.0.1 SP2
• Microsoft Internet Explorer 5.0.1 SP3
• Microsoft Internet Explorer 5.0.1 SP4
• Microsoft Internet Explorer 6.0
• Microsoft Internet Explorer 6.0 SP1
• Nortel Networks Contact Center
• Nortel Networks Contact Center - Contact Recording
• Nortel Networks Contact Center Express
• Nortel Networks Contact Center Manager
• Nortel Networks Contact Center Manager Server
• Nortel Networks Contact Center Multimedia
• Nortel Networks Contact Center - Quality Monitoring
• Nortel Networks Media Processing Server
• Nortel Networks Media Processing Svr 100
• Nortel Networks Media Processing Svr 1000 Rel 3.0
• Nortel Networks Media Processing Svr 500 Rel 3.0
• Nortel Networks MPS Speech Server 6.0
• Nortel Networks Self-Service Media Processing Server
• Nortel Networks Self-Service Peri Application
• Nortel Networks Self-Service - Peri Application Rel 3.0
• Nortel Networks Self-Service Peri Workstation
• Nortel Networks Self-Service Speech Server

References

• BugTraq: 32596
• CVE: CVE-2008-4258
• URL: http://www.microsoft.com/technet/security/Bulletin/MS08-073.mspx