Signature Detail

Short Name	SCAN:METASPLOIT:JS-HEAPLIB
Severity	High
Recommended	Yes
Recommended Action	Drop
Category	SCAN
Keywords	Metasploit JavaScript Heap Exploitation Library
Release Date	2012/09/17
Update Number	2185
Supported Platforms	di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

SCAN: Metasploit JavaScript Heap Exploitation Library

This signature detects the use of the JavaScript Heap Exploitation library by Alexander Sotirov. This BSD licensed library is used in several Metasploit modules to aid in exploitation of heap-based vulnerabilities.

References

CVE: CVE-2012-0439
URL: http://eromang.zataz.com/2012/09/16/zero-day-season-is-really-not-over-yet/
URL: http://labs.alienvault.com/labs/index.php/2012/new-internet-explorer-zero-day-being-exploited-in-the-wild/

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

SCAN: Metasploit JavaScript Heap Exploitation Library

References