TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
765
Signature ID: 34077
MS Windows HTML Help HHCtrl ActiveX Control Memory Corruption Vulnerability
Threat Level: Severe
Industry ID: CVE-2006-3357
Bugtraq: 18769
Signature Description: Microsoft IE is vulnerable to a heap-based buffer overflow in the HTML Help ActiveX control
(HHCtrl.ocx), caused by improper bounds checking of the 'Image' property. Attackers may exploit this issue via a
malicious web page to execute arbitrary code in the context of the currently logged-in user. Exploitation attempts may
lead to a denial-of-service condition as well. Attackers may also employ HTML email to carry out an attack. This
signature detects attacks using the CLSID and %uHHHH encoding.
Signature ID: 34078
MS Windows HTML Help HHCtrl ActiveX Control Memory Corruption Vulnerability
Threat Level: Severe
Industry ID: CVE-2006-3357 Bugtraq: 18769
Signature Description: Microsoft IE is vulnerable to a heap-based buffer overflow in the HTML Help ActiveX control
(HHCtrl.ocx), caused by improper bounds checking of the 'Image' property. Attackers may exploit this issue via a
malicious web page to execute arbitrary code in the context of the currently logged-in user. Exploitation attempts may
lead to a denial-of-service condition as well. Attackers may also employ HTML email to carry out an attack. This
signature detects attacks using the CLSID and %HH encoding.
Signature ID: 34079
MS Windows HTML Help HHCtrl ActiveX Control Memory Corruption Vulnerability
Threat Level: Warning
Industry ID: CVE-2006-3357 Bugtraq: 18769
Signature Description: Microsoft IE is vulnerable to a heap-based buffer overflow in the HTML Help ActiveX control
(HHCtrl.ocx), caused by improper bounds checking of the 'Image' property. Attackers may exploit this issue via a
malicious web page to execute arbitrary code in the context of the currently logged-in user. Exploitation attempts may
lead to a denial-of-service condition as well. Attackers may also employ HTML email to carry out an attack. This
signature detects traffic that is using the vulnerable CLSID.
Signature ID: 34080
MS Windows HTML Help HHCtrl ActiveX Control Memory Corruption Vulnerability
Threat Level: Severe
Industry ID: CVE-2006-3357 Bugtraq: 18769
Signature Description: Microsoft IE is vulnerable to a heap-based buffer overflow in the HTML Help ActiveX control
(HHCtrl.ocx), caused by improper bounds checking of the 'Image' property. Attackers may exploit this issue via a
malicious web page to execute arbitrary code in the context of the currently logged-in user. Exploitation attempts may
lead to a denial-of-service condition as well. Attackers may also employ HTML email to carry out an attack. This
signature detects attacks using the PROGID and %uHHHH encoding.
Signature ID: 34081
MS Windows HTML Help HHCtrl ActiveX Control Memory Corruption Vulnerability
Threat Level: Severe
Industry ID: CVE-2006-3357
Bugtraq: 18769
Signature Description: Microsoft IE is vulnerable to a heap-based buffer overflow in the HTML Help ActiveX control
(HHCtrl.ocx), caused by improper bounds checking of the 'Image' property. Attackers may exploit this issue via a
malicious web page to execute arbitrary code in the context of the currently logged-in user. Exploitation attempts may
lead to a denial-of-service condition as well. Attackers may also employ HTML email to carry out an attack. This
signature detects attacks using the PROGID and %HH encoding.