1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: MSIE MSXML CVE-2012-1889

Web Attack: MSIE MSXML CVE-2012-1889

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.


This signature detects a maliciously crafted website attempting to exploit a remote code execution vulnerability in Microsoft XML Core Services.

Additional Information

A vulnerability exists in Internet Explorer when using a function of MSXML object that may be lead to crash or remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user and could take complete control of an affected system.


  • Microsoft Internet Explorer
  • Microsoft XML Core Services 3.0
  • Microsoft XML Core Services 4.0
  • Microsoft XML Core Services 5.0
  • Microsoft XML Core Services 6.0
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube