Short Name |
HTTP:MISC:MS-MOVIE-MAKER-OCX |
---|---|
Severity |
Minor |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Microsoft Movie Maker hhctrl.ocx load attempt |
Release Date |
2014/04/15 |
Update Number |
2364 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability in Windows movie maker. It is due to a design weakness in loading configuration files. Remote attackers can exploit this by enticing target users to download a malicious dll file. A successful attack can result in loading the attacker-controlled library and execution of arbitrary code with the privileges of the logged-in user.
Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426: Untrusted Search Path'