BROWSER-IE -- Snort has detected traffic known to exploit vulnerabilities present in the Internet Explorer browser, or products that have the Trident or Tasman engines.
BROWSER-IE Microsoft Internet Explorer redirect to cdl protocol attempt
What To Look For
Attacks/Scans seen in the wild
Known false positives, with the described conditions
Cisco Talos Intelligence Group
MITRE ATT&CK Framework
Tactic: Defense Evasion
Technique: Obfuscated Files or Information
For reference, see the MITRE ATT&CK vulnerability types here:
CVE Additional Information
CVE-2011-1262Microsoft Internet Explorer 7 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, aka "HTTP Redirect Memory Corruption Vulnerability."
||Ease of Access||