Rhino
06-08-2004, 10:11 PM
[ QUOTE ]
</font>Internet Explorer Local Resource Access and Cross-Zone Scripting Vulnerabilities</font> (http://secunia.com/advisories/11793/)
Secunia Advisory: SA11793
Release Date: 2004-06-08
Critical: Extremely critical
Impact: Security Bypass
System access
Where: From remote
Software: Microsoft Internet Explorer 6
Description:
Two vulnerabilities have been reported in Internet Explorer, which in combination with other known issues can be exploited by malicious people to compromise a user's system.
1) A variant of the "Location:" local resource access vulnerability can be exploited via a specially crafted URL in the "Location:" HTTP header to open local files.
Example:
"Location: URL:ms-its:C:\WINDOWS\Help\iexplore.chm::/iegetsrt.htm"
2) A cross-zone scripting error can be exploited to execute files in the "Local Machine" security zone.
Secunia has confirmed the vulnerabilities in a fully patched system with Internet Explorer 6.0. It has been reported that the preliminary SP2 prevents exploitation by denying access.................
[/ QUOTE ]
Again boys and girls, there is no patch for these vulnerabilities and exploit code for them is already available on the internet. At least one web site contains these exploits at this time. More bad mojo for Microsoft.
</font>Internet Explorer Local Resource Access and Cross-Zone Scripting Vulnerabilities</font> (http://secunia.com/advisories/11793/)
Secunia Advisory: SA11793
Release Date: 2004-06-08
Critical: Extremely critical
Impact: Security Bypass
System access
Where: From remote
Software: Microsoft Internet Explorer 6
Description:
Two vulnerabilities have been reported in Internet Explorer, which in combination with other known issues can be exploited by malicious people to compromise a user's system.
1) A variant of the "Location:" local resource access vulnerability can be exploited via a specially crafted URL in the "Location:" HTTP header to open local files.
Example:
"Location: URL:ms-its:C:\WINDOWS\Help\iexplore.chm::/iegetsrt.htm"
2) A cross-zone scripting error can be exploited to execute files in the "Local Machine" security zone.
Secunia has confirmed the vulnerabilities in a fully patched system with Internet Explorer 6.0. It has been reported that the preliminary SP2 prevents exploitation by denying access.................
[/ QUOTE ]
Again boys and girls, there is no patch for these vulnerabilities and exploit code for them is already available on the internet. At least one web site contains these exploits at this time. More bad mojo for Microsoft.