Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 FTP:OVERFLOW:MS-IE-FTP-RES-MC

Severity

 Major

Recommended

 No

Recommended Action

 Drop

Category

 FTP

Keywords

 Microsoft Internet Explorer FTP Response Parsing Memory Corruption

Release Date

 2010/10/04

Update Number

 1784

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

FTP: Microsoft Internet Explorer FTP Response Parsing Memory Corruption


This signature detects attempts to exploit a known vulnerability against Microsoft Internet Explorer. A successful attack could allow the attacker to execute arbitrary code on the targeted system. Failed exploit attempts could result in a denial of service condition.

Extended Description

Microsoft Internet Explorer is prone to a memory-corruption vulnerability when parsing certain FTP server responses. Successfully exploiting this issue allows remote attackers to execute arbitrary machine code in the context of the affected application. This facilitates the remote compromise of affected computers.

Affected Products

  • Avaya agent_access
  • Avaya basic_call_management_system_reporting_desktop server
  • Avaya basic_call_management_system_reporting_desktop
  • Avaya cms_supervisor
  • Avaya computer_telephony
  • Avaya contact_center_express
  • Avaya cvlan
  • Avaya enterprise_management
  • Avaya integrated_management
  • Avaya interaction_center
  • Avaya ip_agent
  • Avaya ip_softphone
  • Avaya messaging_application_server
  • Avaya modular_messaging_(mas)
  • Avaya network_reporting
  • Avaya octelaccess(r)_server
  • Avaya octeldesignertm
  • Avaya operational_analyst
  • Avaya outbound_contact_management
  • Avaya s8100_media_servers R10
  • Avaya s8100_media_servers R11
  • Avaya s8100_media_servers R12
  • Avaya s8100_media_servers R6
  • Avaya s8100_media_servers R7
  • Avaya s8100_media_servers R8
  • Avaya s8100_media_servers R9
  • Avaya s8100_media_servers
  • Avaya speech_access
  • Avaya unified_communication_center
  • Avaya unified_messenger_(r)
  • Avaya visual_messenger_tm
  • Avaya visual_vector_client
  • Avaya vpnmanagertm_console
  • Avaya web_messenger
  • Hp storage_management_appliance 2.1
  • Microsoft internet_explorer 5.0.1
  • Microsoft internet_explorer 5.0.1 SP1
  • Microsoft internet_explorer 5.0.1 SP2
  • Microsoft internet_explorer 5.0.1 SP3
  • Microsoft internet_explorer 5.0.1 SP4
  • Microsoft internet_explorer 6.0
  • Microsoft internet_explorer 6.0 SP1
  • Microsoft internet_explorer 7.0
  • Nortel_networks callpilot 1002Rp
  • Nortel_networks callpilot 200I
  • Nortel_networks callpilot 201I
  • Nortel_networks callpilot 702T
  • Nortel_networks callpilot 703T
  • Nortel_networks centrex_ip_client_manager 7.0.0
  • Nortel_networks centrex_ip_client_manager 8.0.0
  • Nortel_networks centrex_ip_client_manager 9.0
  • Nortel_networks contact_center
  • Nortel_networks contact_center_express
  • Nortel_networks contact_center_manager
  • Nortel_networks contact_center_manager_server
  • Nortel_networks symposium_network_control_center_(ncc)

References

  • BugTraq: 22489
  • CVE: CVE-2007-0217

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out