TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
854
vulnerable, an attacker could exploit this vulnerability against Internet Explorer using a specially crafted web site. Set
kill bit to the clsid adb880a6-d8ff-11cf-9377-00aa003b7a11 to resolve this issue.
Signature ID: 34871
Microsoft Windows HTML Help Control Cross-Zone Scripting Vulnerability
Threat Level: Severe
Industry ID: CVE-2004-1043
Bugtraq: 11467
Signature Description: The HTML Help ActiveX control (Hhctrl.ocx) provides a rich feature set for help systems. Key
features includes an expanding table of contents, keyword search, shortcuts, and pop-up help topics. The control is one
of the authoring components that ships with Microsoft HTML Help. It is also included with many third-party HTML
Help authoring tools. The Microsoft Windows HTML Help ActiveX control (hhctrl.ocx) does not properly determine
the source of windows opened by the Related Topics command. Internet Explorer 6.0 on Windows XP SP2 is
vulnerable, an attacker could exploit this vulnerability against Internet Explorer using a specially crafted webpage
having UTF-16 encoded exploit code. Set kill bit to the clsid adb880a6-d8ff-11cf-9377-00aa003b7a11 to resolve this
issue.
Signature ID: 34872
Microsoft Windows HTML Help Control Cross-Zone Scripting Vulnerability
Threat Level: Severe
Industry ID: CVE-2004-1043 Bugtraq: 11467
Signature Description: The HTML Help ActiveX control (Hhctrl.ocx) provides a rich feature set for help systems. Key
features includes an expanding table of contents, keyword search, shortcuts, and pop-up help topics. The control is one
of the authoring components that ships with Microsoft HTML Help. It is also included with many third-party HTML
Help authoring tools. The Microsoft Windows HTML Help ActiveX control (hhctrl.ocx) does not properly determine
the source of windows opened by the Related Topics command. Internet Explorer 6.0 on Windows XP SP2 is
vulnerable, an attacker could exploit this vulnerability against Internet Explorer using a specially crafted webpage
having UTF-16 encoded exploit code.
Signature ID: 34873
Microsoft Windows HTML Help Control Cross-Zone Scripting Vulnerability
Threat Level: Severe
Industry ID: CVE-2004-1043
Bugtraq: 11467
Signature Description: The HTML Help ActiveX control (Hhctrl.ocx) provides a rich feature set for help systems. Key
features includes an expanding table of contents, keyword search, shortcuts, and pop-up help topics. The control is one
of the authoring components that ships with Microsoft HTML Help. The Microsoft Windows HTML Help ActiveX
control (hhctrl.ocx) does not properly determine the source of windows opened by the Related Topics command.
Internet Explorer 6.0 on Windows XP SP2 is vulnerable, an attacker could exploit this vulnerability against Internet
Explorer using a specially crafted webpage having %u encoded exploit code.
Signature ID: 34874
Microsoft Windows HTML Help Control Cross-Zone Scripting Vulnerability
Threat Level: Severe
Industry ID: CVE-2004-1043
Bugtraq: 11467
Signature Description: The HTML Help ActiveX control (Hhctrl.ocx) provides a rich feature set for help systems. Key
features includes an expanding table of contents, keyword search, shortcuts, and pop-up help topics. The control is one
of the authoring components that ships with Microsoft HTML Help. The Microsoft Windows HTML Help ActiveX
control (hhctrl.ocx) does not properly determine the source of windows opened by the Related Topics command.
Internet Explorer 6.0 on Windows XP SP2 is vulnerable, an attacker could exploit this vulnerability against Internet
Explorer using a specially crafted webpage which contains hex encoded exploit code.