HighProventia-G 1.1 and earlier, Proventia Network MFS, Proventia Server IPS for Linux technology, Proventia Desktop, Proventia Network IPS, RealSecure Server Sensor, RealSecure Network, BlackICE Agent for Server, BlackICE PC Protection, BlackICE Server Protection, Proventia Server IPS for Microsoft Windows technology:
This signature detects html documents that attempt to instantiate certain specific COM objects which can cause heap corruption and permit the execution of arbitrary code in many versions of Internet Explorer. Additional CLSIDs can be added to a whitelist or blacklist for this signature by using the tuning parameters pam.content.clsid.activexloaderbo.whitelist or pam.content.clsid.activexloaderbo.blacklist
High
Proventia-G 1.1 and earlier: XPU 24.11, Proventia Network MFS: XPU 1.50, Proventia Server IPS for Linux technology: 1.0, Proventia Desktop: 8.0.614.8, Proventia Network IPS: XPU 1.50, RealSecure Server Sensor: XPU 24.11, RealSecure Network: XPU 24.11, BlackICE Agent for Server: 3.6eok, BlackICE PC Protection: 3.6cpa, BlackICE Server Protection: 3.6.cpa, Proventia Server IPS for Microsoft Windows technology: 1.0.914.0
Microsoft Internet Explorer: 6, Microsoft Internet Explorer: 5.5 SP2, Microsoft Internet Explorer: 6 SP1, Microsoft Internet Explorer: 5.01 SP4
Unauthorized Access Attempt
Microsoft Internet Explorer could allow a remote attacker to execute arbitrary code on the system, caused by multiple vulnerabilities that exist when specific COM objects are instantiated as ActiveX controls. By persuading a victim to visit a malicious Web page, a remote attacker could exploit these vulnerabilities to corrupt memory and execute arbitrary code on the system with the privileges of the victim or cause the victim's Web browser to crash.
Apply the appropriate patch for your system, as listed in the latest Microsoft Security Bulletin. See References.
— OR —
Use Microsoft Automatic Update if it is supported by your operating system. The original bulletin issued by Microsoft has been superseded.
IBM Internet Security Systems X-Force Database
Microsoft Internet Explorer javaprxy.dll COM object execute code
http://xforce.iss.net/xforce/xfdb/21193
Microsoft Security Bulletin MS05-038
Cumulative Security Update for Internet Explorer (896727)
http://www.microsoft.com/technet/security/bulletin/ms05-038.mspx
CIAC Information Bulletin P-265
Microsoft Cumulative Update for Internet Explorer
http://www.ciac.org/ciac/bulletins/p-265.shtml
Microsoft Security Bulletin MS05-052
Cumulative Security Update for Internet Explorer (896688)
http://www.microsoft.com/technet/security/Bulletin/MS05-052.mspx
Microsoft Security Bulletin MS05-054
Cumulative Security Update for Internet Explorer (905915)
http://www.microsoft.com/technet/security/Bulletin/MS05-054.mspx
Microsoft Security Bulletin MS06-004
Cumulative Security Update for Internet Explorer (910620)
http://www.microsoft.com/technet/security/Bulletin/MS06-004.mspx
Microsoft Security Bulletin MS06-013
Cumulative Security Update for Internet Explorer (912812)
http://www.microsoft.com/technet/security/Bulletin/MS06-013.mspx
Microsoft Security Bulletin MS06-021
Cumulative Security Update for Internet Explorer (916281)
http://www.microsoft.com/technet/security/Bulletin/MS06-021.mspx
Microsoft Security Bulletin MS06-042
Cumulative Security Update for Internet Explorer (918899)
http://www.microsoft.com/technet/security/bulletin/ms06-042.mspx
Microsoft Security Bulletin MS06-067
Cumulative Security Update for Internet Explorer (922760)
http://www.microsoft.com/technet/security/bulletin/ms06-067.mspx
Microsoft Security Bulletin MS06-072
Cumulative Security Update for Internet Explorer (925454)
http://www.microsoft.com/technet/security/Bulletin/MS06-072.mspx
Microsoft Security Bulletin MS07-016
Cumulative Security Update for Internet Explorer (928090)
http://www.microsoft.com/technet/security/Bulletin/ms07-016.mspx
Microsoft Security Bulletin MS07-027
Cumulative Security Update for Internet Explorer (931768)
http://www.microsoft.com/technet/security/bulletin/ms07-027.mspx
Microsoft Security Bulletin MS07-033
Cumulative Security Update for Internet Explorer (933566)
http://www.microsoft.com/technet/security/bulletin/ms07-033.mspx
Microsoft Security Bulletin MS07-045
Cumulative Security Update for Internet Explorer (937143)
http://www.microsoft.com/technet/security/bulletin/ms07-045.mspx
Microsoft Security Bulletin MS07-057
Cumulative Security Update for Internet Explorer (939653)
http://www.microsoft.com/technet/security/Bulletin/MS07-057.mspx
Microsoft Security Bulletin MS07-069
Cumulative Security Update for Internet Explorer (942615)
http://www.microsoft.com/technet/security/bulletin/ms07-069.mspx
Microsoft Security Bulletin MS08-010
Cumulative Security Update for Internet Explorer (944533)
http://www.microsoft.com/technet/security/bulletin/ms08-010.mspx
Microsoft Security Bulletin MS08-024
Cumulative Security Update for Internet Explorer (947864)
http://www.microsoft.com/technet/security/bulletin/ms08-024.mspx
Microsoft Security Bulletin MS08-031
Cumulative Security Update for Internet Explorer (950759)
http://www.microsoft.com/technet/security/Bulletin/MS08-031.mspx
Microsoft Security Bulletin MS08-045
Cumulative Security Update for Internet Explorer (953838)
http://www.microsoft.com/technet/security/bulletin/ms08-045.mspx
ISS X-Force
Microsoft Internet Explorer multiple COM object code execution
http://www.iss.net/security_center/static/21307.php
CVE
CVE-2005-1990
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1990