Microsoft Internet Explorer script error handling code execution (HTTP_IE_Script_Error_Code_Execution)

About this signature or vulnerability

RealSecure Network, RealSecure Server Sensor, BlackICE Server Protection, BlackICE PC Protection, Proventia Network MFS, IBM Security Server Protection for Windows, Proventia-G 1.1 and earlier, Proventia Network IDS, Proventia Network IPS, Proventia Desktop, Proventia Server IPS for Linux technology, RealSecure Desktop, Virtual Server Protection for Vmware:

This signature detects an attempt to execute shell code by exploiting an error in Internet Explorer's JavaScript exception handling mechanism.

Default risk level

 High

Sensors that have this signature

RealSecure Network: XPU 24.53, RealSecure Server Sensor: XPU 24.53, BlackICE Server Protection: 3.6.cpy, BlackICE PC Protection: 3.6cpy, Proventia Network MFS: XPU 1.92, IBM Security Server Protection for Windows: 1.0.914.1930, IBM Security Server Protection for Windows: 2.1.14.2400, Proventia-G 1.1 and earlier: XPU 24.53, Proventia Network IDS: XPU 24.53, Proventia Network IPS: XPU 1.92, Proventia Desktop: 1930, Proventia Server IPS for Linux technology: 1.92, RealSecure Desktop: epy, Virtual Server Protection for Vmware: 1.0

Systems affected

Microsoft Internet Explorer: 6.0, Microsoft Internet Explorer: 6.0 SP1, Microsoft Internet Explorer: 5.01 SP4, Microsoft Windows 2000: SP4, Microsoft Windows 2003 Server: x64, Microsoft Windows XP: SP2, Microsoft Windows 2003 Server: Itanium, Microsoft Windows 2003 Server: SP1, Microsoft Windows XP: x64 Professional, Microsoft Windows 2003 Server: SP1 Itanium

Type

Unauthorized Access Attempt

Vulnerability description

How to remove this vulnerability

References