Major New IE Flaw
Not So Quiet
Secunia is reporting here (IMPORTANT: Users of McAfee VirusScan will receive a FALSE detection when going to this page) that there is a new major vulnerability in Internet Explorer.
Description:
Two vulnerabilities have been reported in Internet Explorer, which in combination with other known issues can be exploited by malicious people to compromise a user's system.
1) A variant of the "Location:" local resource access vulnerability can be exploited via a specially crafted URL in the "Location:" HTTP header to open local files.
2) A cross-zone scripting error can be exploited to execute files in the "Local Machine" security zone.
Secunia has confirmed the vulnerabilities in a fully patched system with Internet Explorer 6.0. It has been reported that the preliminary SP2 prevents exploitation by denying access.
Successful exploitation requires that a user can be tricked into following a link or view a malicious HTML document.
NOTE: The vulnerabilities are actively being exploited in the wild to install adware on users' systems.
Solution:
Disable Active Scripting support for all but trusted web sites.
Filter "Location:" headers containing the "URL:" prefix in a proxy server.
Use another browser.
Provided and/or discovered by:
Originally discovered in the wild.
Detailed analysis of exploit by Jelmer.
Changelog:
2004-06-08: Updated information in advisory.
2004-06-10: Updated information in advisory and added link to US-CERT vulnerability note.
Other References:
Jelmer's posting on Full-Disclosure:
http://archives.neohapsis.com/ar...fulldisclosure/2004-06/0104.html
US-CERT VU#713878:
http://www.kb.cert.org/vuls/id/713878
|
|
Please note: The information, which this Secunia Advisory is based upon, comes from third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others. |
There have been reports of a pop up-producing toolbar already using this vulnerability to install itself.