|Check Point Reference:||CPAI-2012-050|
|Date Published:||14 Feb 2012|
|Protection Provided by:||
|Who is Vulnerable?||Microsoft Internet Explorer 9|
|Vulnerability Description||An information disclosure vulnerability has been reported in Internet Explorer.|
|Update/Patch Avaliable||Apply patches from: MS12-010|
|Vulnerability Details||The vulnerability occurs during certain processes, in which Internet Explorer incorrectly allows attackers to view content from the process memory. A remote attacker may exploit this issue by enticing target users to open a specially crafted web-page. Successful exploitation could allow an attacker to view content from the Internet Explorer process memory.|
This protection will detect and block attempts to open a specially crafted web-page.
In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, Protection tab and select the version of your choice.
- In the IPS tab, click Protections and find the Internet Explorer Null Byte Information Disclosure (MS12-010) protection using the Search tool and Edit the protection's settings.
- Install policy on all modules.
SmartView Tracker will log the following entries:
Attack Name: Web Client Enforcement Violation
Attack Information: Internet Explorer Null Byte information disclosure (MS12-010)