Intrusion PreventionMS.Windows.Image.Color.Management.System.Heap.Overflow
Description
This indicates an attempt to exploit a heap-overflow vulnerability in the Microsoft Color Management System.
The vulnerability is due to a flaw in the processing of malformed EMF files, which may lead to a crash or a remote code execution in the context of the current process.
Affected Products
Microsoft Windows 2000 Service Pack 4
Windows XP Service Pack 2 and Windows XP Service Pack 3
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems
Impact
System compromise.
Recommended Actions
Please visit the following website for the latest patch or update:
http://www.microsoft.com/technet/security/bulletin/MS08-046.mspx
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2023-05-10 | 23.551 | Sig Added |
| 2021-09-22 | 18.163 | Sig Added |
| 2021-06-15 | 18.098 | Sig Added |
| ID | 15776 |
| Created | Aug 15, 2008 |
| Updated | May 09, 2023 |
| Risk |
|
| CVE ID | CVE-2008-2245 |
| Exploit Prediction Score | 96.03% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | IE |