Signature Detail
Short Name |
HTTP:STC:OUTLOOK:OUTLOOK-PRF |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Microsoft Outlook PRF File Remote Code Execution |
Release Date |
2008/03/11 |
Update Number |
1213 |
Supported Platforms |
di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Microsoft Outlook PRF File Remote Code Execution
This signature detects attempts to exploit a known vulnerability in Microsoft Outlook. An attacker can create a Web site containing a dangerous call to a PRF file, which if accessed by a victim, allows the attacker to gain control of the victim's client browser.
Extended Description
Microsoft Outlook is prone to a remote code-execution vulnerability because the application fails to adequately validate user-supplied data. Successfully exploiting this issue will allow attackers to execute arbitrary code with the privileges of the currently logged-in user. This will facilitate the remote compromise of affected computers.
Affected Products
- Microsoft Outlook 2000 SP2
- Microsoft Outlook 2000 SP3
- Microsoft Outlook 2000
- Microsoft Outlook 2002 SP1
- Microsoft Outlook 2002 SP2
- Microsoft Outlook 2002 SP3
- Microsoft Outlook 2002
- Microsoft Outlook 2003 SP2
- Microsoft Outlook 2003 SP3
- Microsoft Outlook 2003
- Microsoft Outlook 2007
References
- BugTraq: 28147
- CVE: CVE-2008-0110