McAfee > Theat Center > Vulnerability Detail Page

Timeline

2/20/2009

A proof of concept has been released.

2/10/2009

Vendor has provided a patch.

Description

A vulnerability in Microsoft Internet Explorer 7 may allow for remote code execution. The flaw is specific to the method used, by Internet Explorer, to access objects which have been previously deleted. Exploitation can be achieved via a specially-crafted web paged designed to exploit vulnerability. Code execution will be possible within the context of the logged-on user.

McAfee Product Mitigation & Recommendations

Recommendations

The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-002.mspx

McAfee Product Mitigation

McAfee Foundstone

Signature:

(MS09-002) Microsoft Internet Explorer CSS Memory Corruption Vulnerability CVE-2009-0075 (961260)

Signature identifier:

6424

Release date:

2/10/2009

McAfee Intrushield

Signature:

HTTP: Internet Explorer Uninitialized Memory Corruption Vulnerability

Signature identifier:

1076209408

Release date:

1/29/2009

First released in:

5.1.12, 4.1.42, 3.1.79

McAfee Host IPS

Signature:

GBOP

Signature:

(MS09-002) Microsoft Internet Explorer Uninitialized Memory Corruption Vulnerability (961260)

Signature identifier:

6424

Release date:

2/11/2009

McAfee VirusScan Enterprise 8.0i (VSE8.0i) / Managed Virus Scan (MVS) Buffer Overflow Protection

Signature:

GBOP

McAfee Anti-Virus protection

Detection is provided in the 5524 when scanning using the following products: SIG, SWG, GS, VSE E-mail, VSO E-mail.

Signature:

DATs

Signature identifier:

5524

Release date:

2/11/2009

First released in:

Exploit-CVE2009-0075, Exploit-XMLhttp.d, Exploit-MSWord.k

The Remedy V-Flash of 2/11/2009 contains remedies for all affected operating systems except for Windows 2008. Windows 2008 is currently not supported.

Additional Resources

Cumulative Security Update for Internet Explorer (961260)

http://www.microsoft.com/technet/security/bulletin/ms09-002.mspx

All Information

Timeline -

2/20/2009

A proof of concept has been released.

2/10/2009

Vendor has provided a patch.

Description -

A vulnerability in Microsoft Internet Explorer 7 may allow for remote code execution. The flaw is specific to the method used, by Internet Explorer, to access objects which have been previously deleted. Exploitation can be achieved via a specially-crafted web paged designed to exploit vulnerability. Code execution will be possible within the context of the logged-on user.

McAfee Product Mitigation & Recommendations

Recommendations -

The vendor has released a patch to address this issue: http://www.microsoft.com/technet/security/bulletin/ms09-002.mspx

McAfee Product Mitigation

McAfee Foundstone

Signature:

(MS09-002) Microsoft Internet Explorer CSS Memory Corruption Vulnerability CVE-2009-0075 (961260)

Signature identifier:

6424

Release date:

2/10/2009

McAfee Intrushield

Signature:

HTTP: Internet Explorer Uninitialized Memory Corruption Vulnerability

Signature identifier:

1076209408

Release date:

1/29/2009

First released in:

5.1.12, 4.1.42, 3.1.79

McAfee Host IPS

Signature:

GBOP

Signature:

(MS09-002) Microsoft Internet Explorer Uninitialized Memory Corruption Vulnerability (961260)

Signature identifier:

6424

Release date:

2/11/2009

McAfee VirusScan Enterprise 8.0i (VSE8.0i) / Managed Virus Scan (MVS) Buffer Overflow Protection

Signature:

GBOP

McAfee Anti-Virus protection

Detection is provided in the 5524 when scanning using the following products: SIG, SWG, GS, VSE E-mail, VSO E-mail.

Signature:

DATs

Signature identifier:

5524

Release date:

2/11/2009

First released in:

Exploit-CVE2009-0075, Exploit-XMLhttp.d, Exploit-MSWord.k

The Remedy V-Flash of 2/11/2009 contains remedies for all affected operating systems except for Windows 2008. Windows 2008 is currently not supported.

Additional Resources

Additional Resources -

Cumulative Security Update for Internet Explorer (961260)

http://www.microsoft.com/technet/security/bulletin/ms09-002.mspx