How can I help you? Start Chat

US Phone: 1-866-488-6691
International Phone: +44-2036087492

  • E-Mail
  • Facebook
  • LinkedIn
  • Twitter

Check Point Advisories

Microsoft Internet Explorer Uninitialized Pointer Dereference (MS11-081; CVE-2011-1995)

Check Point Reference: CPAI-2011-457
Date Published: 11 Oct 2011
Severity: Critical
Last Updated: 17 Feb 2016
Source:
Industry Reference:CVE-2011-1995
Protection Provided by:

Security Gateway
R80, R77, R76, R75, R71, R70

Who is Vulnerable?
Vulnerability Description A vulnerability has been reported in Internet Explorer.The vulnerability is due to an error in the way an ActiveX component initializes certain data structures. A remote attacker may exploit this vulnerability by enticing a user to open a malicious web-page. Successful exploitation may allow an attacker to take complete control of an affected system.

Protection Overview

This protection will detect and block attempts to open a specially crafted web-page.

In order for the protection to be activated, update your Security Gateway product to the latest IPS update.For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.

Security Gateway R80 / R77 / R76 / R75 / R71 / R70

  1. In the IPS tab, click Protections and find the Microsoft Internet Explorer Uninitialized Pointer Dereference (MS11-081) protection using the Search tool and Edit the protection's settings.
  2. Install policy on all modules.

This protection's log will contain the following information:

Attack Name:  Web Client Enforcement Violation.
Attack Information:  Microsoft Internet Explorer uninitialized pointer dereference (MS11-081)