|Check Point Reference:||CPAI-2007-001|
|Date Published:||26 Dec 2006|
|Last Updated:||30 Jul 2013|
|Protection Provided by:||
|Who is Vulnerable?|
|Vulnerability Description||Microsoft Internet Explorer (IE) contains a remote code execution vulnerability.By convincing a user to visit a specially crafted Web page, a remote attacker may trigger this vulnerability to deny service from legitimate users (by causing the victim's Web browser to crash) or execute arbitrary code on an affected system.|
In order for the protection to be activated, update your Security Gateway product to the latest IPS update.For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.
This protection's log will contain the following information:
Attack Name: Web Client Enforcement Violation.
Attack Information: Internet Explorer undisclosed script handler buffer overflow (MS06-072)