|Check Point Reference:||CPAI-2013-2899|
|Date Published:||10 Sep 2013|
|Last Updated:||15 Dec 2016|
|Protection Provided by:||
|Who is Vulnerable?|
|Vulnerability Description||A Remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory. A remote attacker can exploit this issue by enticing a victim to view a specially crafted website with an affected version of Internet Explorer. Successful exploitation may cause memory corruption in a way that could allow an attacker to execute arbitrary code in the context of the current user.|
This protection will detect and block attempts to open a malicious HTML file.
In order for the protection to be activated, update your Security Gateway product to the latest IPS update.For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.
This protection's log will contain the following information:
Attack Name: Web Client Enforcement Violation.
Attack Information: Microsoft Internet Explorer Memory Corruption (MS13-069: CVE-2013-3203)