This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.
This signature detects attempts to exploit a vulnerability in Novell ZENworks which may allow arbitrary code to execute in the context of the application.
Novell ZENworks Configuration Management is an application that Automates IT management and business processes.
Novell ZENworks Configuration Management is prone to the following remote code-execution vulnerabilities:
1. A remote code-execution vulnerability affects the 'DoFindReplace()' method of the 'SIGrid.Grid.1' ActiveX control when handling data passed to the 'bstrReplaceText' parameter.
2. A remote code-execution vulnerability affects the 'Antique' ActiveX control.
3. A remote code-execution vulnerability affects the 'LaunchHelp.dll' ActiveX control. This issue affects the Launch process functionality.
Successfully exploiting these issues allows remote attackers to execute arbitrary code in the context of the application (typically Internet Explorer) using the ActiveX control. Failed exploit attempts likely result in denial-of-service conditions.