MediumProventia Network IPS, RealSecure Desktop, RealSecure Desktop Protector 3.6, BlackICE Agent for Server, BlackICE PC Protection, BlackICE Server Protection, RealSecure Server Sensor, RealSecure Network, Proventia Desktop, Proventia Network IDS, Proventia-G 1.1 and earlier, IBM Security Server Protection for Windows, Proventia Network MFS, Virtual Server Protection for Vmware, Proventia Server IPS for Linux technology:
This signature detects possible spoofed content in a browser window.
Medium
Proventia Network IPS: XPU 1.74, RealSecure Desktop: epf, RealSecure Desktop Protector 3.6: epf, BlackICE Agent for Server: 3.6epf, BlackICE PC Protection: 3.6cpf, BlackICE Server Protection: 3.6.cpf, RealSecure Server Sensor: XPU 24.35, RealSecure Network: XPU 24.35, Proventia Desktop: 8.0.675.1740, Proventia Network IDS: XPU 24.35, Proventia-G 1.1 and earlier: XPU 24.35, IBM Security Server Protection for Windows: 2.1.14.2400, IBM Security Server Protection for Windows: 1.0.914.1740, Proventia Network MFS: XPU 1.74, Virtual Server Protection for Vmware: 1.0, Proventia Server IPS for Linux technology: 1.74
Microsoft Internet Explorer: 6.0, Microsoft Internet Explorer: 6.0 SP1, Microsoft Windows XP: SP1, Microsoft Internet Explorer: 5.01 SP4, Microsoft Windows 2000: SP4, Microsoft Windows 2003 Server: x64, Microsoft Windows XP: SP2, Microsoft Windows 2003 Server: Itanium, Microsoft Windows 2003 Server: SP1, Microsoft Windows XP: x64 Professional, Microsoft Windows 2003 Server: SP1 Itanium
Suspicious Activity
Microsoft Internet Explorer could allow a remote attacker to display spoofed content in a browser window. This hasbeen navigated away from the attacker's Web site. A remote attacker could exploit this vulnerability to spoof a legitimate Web site with a malicious page.
Apply the appropriate patch for your system, as listed in the latest Microsoft Security Bulletin. See References.
— OR —
Use Microsoft Automatic Update if it is supported by your operating system. The original bulletin issued by Microsoft has been superseded.
Microsoft Security Bulletin MS06-013
Cumulative Security Update for Internet Explorer (912812)
http://www.microsoft.com/technet/security/bulletin/ms06-013.mspx
Internet Security Systems Protection Alert - April 11, 2006
Cumulative Security Update for Internet Explorer
http://xforce.iss.net/xforce/alerts/id/220
US-CERT Technical Cyber Security Alert TA06-101A
Microsoft Windows and Internet Explorer Vulnerabilities
http://www.us-cert.gov/cas/techalerts/TA06-101A.html
Microsoft Security Bulletin MS06-021
Cumulative Security Update for Internet Explorer (916281)
http://www.microsoft.com/technet/security/Bulletin/MS06-021.mspx
Microsoft Security Bulletin MS06-042
Cumulative Security Update for Internet Explorer (918899)
http://www.microsoft.com/technet/security/bulletin/ms06-042.mspx
Microsoft Security Bulletin MS06-067
Cumulative Security Update for Internet Explorer (922760)
http://www.microsoft.com/technet/security/bulletin/ms06-067.mspx
Microsoft Security Bulletin MS06-072
Cumulative Security Update for Internet Explorer (925454)
http://www.microsoft.com/technet/security/Bulletin/MS06-072.mspx
Microsoft Security Bulletin MS07-016
Cumulative Security Update for Internet Explorer (928090)
http://www.microsoft.com/technet/security/Bulletin/ms07-016.mspx
Microsoft Security Bulletin MS07-027
Cumulative Security Update for Internet Explorer (931768)
http://www.microsoft.com/technet/security/bulletin/ms07-027.mspx
Microsoft Security Bulletin MS07-033
Cumulative Security Update for Internet Explorer (933566)
http://www.microsoft.com/technet/security/bulletin/ms07-033.mspx
Microsoft Security Bulletin MS07-045
Cumulative Security Update for Internet Explorer (937143)
http://www.microsoft.com/technet/security/bulletin/ms07-045.mspx
Microsoft Security Bulletin MS07-057
Cumulative Security Update for Internet Explorer (939653)
http://www.microsoft.com/technet/security/Bulletin/MS07-057.mspx
Microsoft Security Bulletin MS07-069
Cumulative Security Update for Internet Explorer (942615)
http://www.microsoft.com/technet/security/bulletin/ms07-069.mspx
Microsoft Security Bulletin MS08-010
Cumulative Security Update for Internet Explorer (944533)
http://www.microsoft.com/technet/security/bulletin/ms08-010.mspx
Microsoft Security Bulletin MS08-024
Cumulative Security Update for Internet Explorer (947864)
http://www.microsoft.com/technet/security/bulletin/ms08-024.mspx
Microsoft Security Bulletin MS08-031
Cumulative Security Update for Internet Explorer (950759)
http://www.microsoft.com/technet/security/Bulletin/MS08-031.mspx
Microsoft Security Bulletin MS08-045
Cumulative Security Update for Internet Explorer (953838)
http://www.microsoft.com/technet/security/bulletin/ms08-045.mspx
Microsoft Security Bulletin MS08-058
Cumulative Security Update for Internet Explorer (956390)
http://www.microsoft.com/technet/security/bulletin/ms08-058.mspx
ISS X-Force
Microsoft Internet Explorer address bar spoofing
http://www.iss.net/security_center/static/25557.php
CVE
CVE-2006-1192
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1192