Internet Explorer COM Objects Protection (MS05-052)

A vulnerability exists in the way Internet Explorer handles certain Component Objects Models (COM) objects that are not designed to be instantiated in Internet Explorer. An attacker could exploit these vulnerabilities by creating a malicious Web page and persuading the user to visit the page or by sending it to a victim as an HTML email. Successful exploitation could result in remote code execution which would allow an attacker to take complete control of the affected system.

The Microsoft DDS Library Shape Control (Msdds.dll) and other COM objects could, when instantiated in Internet Explorer as ActiveX controls, allow an attacker to take complete control of an affected system.

Users of VPN-1 NG with Application Intelligence R55 and R55W, users of VPN-1 NGX R60 and users of InterSpect should update their SmartDefense by clicking Online Update (R55 - Update Now) in the SmartDashboard General window.

The Update protects against the vulnerability by blocking the malformed COM objects.

To enable the protection:

1. On the Web Intelligence tree, click click HTTP Client Protections and enable Microsoft Internet Explorer.

2. Check Block COM Objects (MS05-052) Vulnerability.



3. Install security policy on all modules.

Note: Depending on the traffic nature, this protection may be performance-intensive.