Intrusion Prevention

MS.IE.Keystroke.Events.Form.Handling.Arbitrary.File.Upload

Description

This indicates an attack attempt against an Information Disclosure vulnerability in Microsoft Internet Explorer.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted web page. It allows a remote attacker to read arbitrary files.

Affected Products

Microsoft Internet Explorer 6
Microsoft Internet Explorer 7

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Privilege Escalation: Remote attackers can leverage their privilege on the vulnerable systems.

Recommended Actions

Currently we are not aware of any vendor supplied patch for this issue.

CVE References

CVE-2006-2900