Microsoft Time Remote Code Execution (MS11-090)
| Check Point Reference: | CPAI-2011-579 | |
| Date Published: | ||
| Severity: | ||
| Source: | Microsoft Security Bulletin MS11-090 | |
| Protection Provided by: |
IPS-1
|
|
| Who is Vulnerable? Windows XP Service Pack 3 Windows XP Professional x64 Edition Service Pack 2 Windows Server 2003 Service Pack 2 Windows Server 2003 x64 Edition Service Pack 2 Windows Server 2003 with SP2 for Itanium-based Systems | ||
| Vulnerability Description A remote code execution vulnerability has been reported in Microsoft Internet Explorer (IE). |
||
|
Update/Patch Available Apply patches from: MS11-090 |
|
|
Vulnerability Details The vulnerability is due to an error in the way that multiple ActiveX controls are loaded by Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer. Successful exploitation could allow an attacker to execute arbitrary code on an affected system. |
Protection Overview
This protection will detect and block the vulnerable ActiveX controls.
To configure the defense, select your product from the list below and follow the related protection steps.