Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:STC:IE:XML-MIME-CORRUPT

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 Microsoft XML Core Services MIME Viewer Memory Corruption

Release Date

 2010/09/28

Update Number

 1780

Supported Platforms

 idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Microsoft XML Core Services MIME Viewer Memory Corruption


This signature detects attempts to exploit a known vulnerability against Microsoft Internet Explorer. All versions of Microsoft Windows using Microsoft XML Core Services 3.0 are vulnerable. Attackers can leverage this vulnerability to execute arbitrary code on the victim.

Extended Description

Microsoft XML Core Services (MSXML) is prone to a remote memory-corruption vulnerability because of a race condition that may cause a NULL-pointer dereference, read or write operations to invalid addresses, or other memory-corruption issues. Attackers may exploit this issue to execute arbitrary machine code in the context of the vulnerable application. Failed exploit attempts will likely crash the application. NOTE: SANS has provided new information that lowers the impact of this vulnerability. Please see the reference section for details.

Affected Products

  • Avaya Messaging Application Server MM 1.1
  • Avaya Messaging Application Server MM 2.0
  • Avaya Messaging Application Server MM 3.0
  • Avaya Messaging Application Server MM 3.1
  • Avaya Messaging Application Server
  • HP Storage Management Appliance 2.1
  • Microsoft XML Core Services 3.0
  • Nortel Networks CallPilot 1005R
  • Nortel Networks CallPilot 201I
  • Nortel Networks CallPilot 600R
  • Nortel Networks CallPilot 703T
  • Nortel Networks Contact Center Express
  • Nortel Networks Contact Center Manager
  • Nortel Networks Contact Center Manager Server
  • Nortel Networks Contact Center NCC
  • Nortel Networks Contact Center - TAPI Server
  • Nortel Networks Self-Service - CCSS7
  • Nortel Networks Self-Service CCXML
  • Nortel Networks Self-Service Media Processing Server
  • Nortel Networks Self-Service MPS 100
  • Nortel Networks Self-Service MPS 1000
  • Nortel Networks Self-Service MPS 500
  • Nortel Networks Self-Service Peri Application
  • Nortel Networks Self-Service Peri Workstation
  • Nortel Networks Self-Service Speech Server
  • Nortel Networks Self Service VoiceXML
  • Nortel Networks Self-Service WVADS
  • Nortel Networks Symposium Agent

References

  • CVE: CVE-2007-0099
  • URL: http://www.microsoft.com/technet/security/bulletin/ms08-069.mspx

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out