Intrusion PreventionMS.IE.JSON.stringify.Memory.Corruption
Description
This indicates an attack attempt to exploit a Code Execution vulnerability in Microsoft Internet Explorer.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted HTML file. An attacker can exploit this by tricking an unsuspecting user into visiting a malicious webpage and execute arbitrary code on vulnerable systems.
Affected Products
Internet Explorer 10
Internet Explorer 11
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
http://technet.microsoft.com/security/bulletin/MS15-065
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2019-06-27 | 14.640 | Sig Added |
| 2019-02-28 | 14.562 | Sig Added |
| 2019-02-26 | 14.560 | Modified |
| 2019-02-21 | 14.558 | Modified |
| 2019-02-15 | 14.554 | Sig Added |
| 2019-02-08 | 14.546 | Sig Added |
| 2019-01-23 | 14.531 | Sig Added |
| 2019-01-17 | 14.526 | Sig Added |
| ID | 40901 |
| Created | Jul 14, 2015 |
| Updated | Dec 20, 2022 |
| Risk |
|
| CVE ID | CVE-2015-2419 |
| Known Exploited | Yes |
| Exploit Prediction Score | 97.18% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | IE |