RULE(RULE ID:333899)

Rule General Information
Release Date: 2021-09-10
Rule Name: Microsoft MSHTML Remote Code Execution Vulnerability (CVE-2021-40444)
Rule Protection Details
Description: Microsoft MSHTML.DLL is a dynamic link library used by Microsoft Corporation to parse HTML language. Applications such as IE, Outlook, and Outlook Express all use this dynamic link library. The vulnerability is in MSHTML, Internet Explorer’s engine. A remote attacker can create a specially crafted Office document with malicious ActiveX controls to trick the victim to open the document and execute arbitrary code on the system.
Impact: An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software.
Affected OS: Windows
The vendor has released upgrade patches to fix vulnerabilities, please visit: