Check Point Provides Preemptive Protection Against Critical Internet Explorer Vulnerability
( Microsoft Security Bulletin MS11-057, CVE-2011-1963, CVE-2010-2558 )
Summary
A memory corruption vulnerability has been reported in Microsoft Internet Explorer. A remote attacker can leverage this vulnerability to execute arbitrary code on an affected system within the security context of the logged in user.
Details
This memory corruption vulnerability is caused by an error in the way Internet Explorer attempts to access certain objects that have not been initialized or have been deleted. A remote attacker can exploit this vulnerability by enticing an unsuspecting victim to open a malicious web page, which may cause a memory corruption condition that then allows an attacker to execute arbitrary code on the targeted system.
Affected Products
This issue affects Internet Explorer versions 7, 8, and 9 on certain versions of Microsoft Windows. For full details see CPAI-2011-370.
Solution
Check Point recommends applying the Cumulative Security Update for Internet Explorer as detailed in the MS11-057 bulletin. In the meantime, Check Point's IPS Software Blade and NGX SmartDefense provide immediate network protection for unpatched systems by detecting and blocking the transferal of malicious XSL files over HTTP. For more information see CPAI-2011-370.
Originally Published:
Last Updated: 09-Aug-2011