MS06-046

[strion]

Hi all,
i just update SD on my NGX R60 HF03 SPLAT.
I checked the "Block HTML Decoding Memmory Corruption Vulnerability" on the WI/Http Client Protections/Internet Explorer page and internet browsing stopped working well. For example the www.google.com page doesn't load anymore. Unchecking the box and recompiling the policies makes browsing work again.
I went to the CP's SD web site to finde more info about this control and i don't find its description.
Does anyone have this problem?

Thanks

Strion.

[kva.kva]

Did you patch your system?
http://www.microsoft.com/technet/sec.../MS06-046.mspx

Also may be you need patch http://www.microsoft.com/technet/sec.../MS06-021.mspx

HTML Decoding Memory Corruption Vulnerability (CVE-2006-2382) - http://www.cve.mitre.org/cgi-bin/cve...=CVE-2006-2382.

[dramirez]

What difference will it make by having the fix installed? Support asked me exactly the same thing... "do all systems have the patch installed?" ticket is still open and it's been over a week. I had to disable MS06-046, even tough the logs showed the problem to be the "create TextRange" vulnerability.

Problem is SD is somehow blocking traffic it shouldn't block, this isn't the first time SD has undesirable side effects for me.

[melipla]

Quote:

Originally Posted by dramirez

Problem is SD is somehow blocking traffic it shouldn't block, this isn't the first time SD has undesirable side effects for me.

I've experienced the same problem with enabling SD in the past. You think it blocks X traffic but ends up block Y as well. It can be rather frustrating.

Out of curiosity, are the patched clients able to function properly with MS06-046 enabled?

[dramirez]

Quote:

Originally Posted by melipla

Out of curiosity, are the patched clients able to function properly with MS06-046 enabled?

No they weren't able to reach google... fully patched systems!

They were able to duplicate the problem, but I'm still waiting for a solution.