Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 HTTP:EK-LANDING-PAGE

Severity

 Major

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 Various Exploit Kit Landing Page

Release Date

 2016/11/15

Update Number

 2804

Supported Platforms

 idp-4.1+, isg-3.5.141818+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Various Exploit Kit Landing Page


This signature detects an attempt to download exploits from malicious exploit kits that may compromise a computer through various vendor vulnerabilities. Exploit kits are very specific type of toolkits which are being used by cybercriminals to deliver other pieces of malware.

Extended Description

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not properly allocated or (2) is deleted, as demonstrated by a CDwnBindInfo object, and exploited in the wild in December 2012.

Affected Products

  • Microsoft internet_explorer 6
  • Microsoft internet_explorer 7
  • Microsoft internet_explorer 8

References

  • CVE: CVE-2008-0655
  • CVE: CVE-2012-0634
  • CVE: CVE-2007-5659
  • CVE: CVE-2008-2992
  • CVE: CVE-2008-5353
  • CVE: CVE-2009-3867
  • CVE: CVE-2011-2140
  • CVE: CVE-2011-3544
  • CVE: CVE-2012-1723
  • CVE: CVE-2012-1889
  • CVE: CVE-2012-4681
  • CVE: CVE-2012-4792
  • CVE: CVE-2013-1493

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out