|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
ISS ProIStection Brief: Microsoft IE createTextRange() Remote Command Execution
From: X-Force (xforce
iss.net)
Date: Fri Mar 24 2006 - 13:55:42 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
-----BEGIN PGP SIGNED MESSAGE-----
Internet Security Systems Protection Alert
March 24, 2006
Microsoft IE createTextRange() Remote Command Execution
Version: 1.0
Summary:
A vulnerability was reported in the way Microsoft Internet Explorer
handles unexpected method calls. Exploitation of this vulnerability
could lead to remote code execution under the security context of the user
viewing a malicious web page.
Description:
Internet Explorer does not properly handle the createTextRange()
method when invoked on a checkbox object. Because of this, a call is
made to a predictable location in memory. An attacker can easily
fill this predictable location in memory with malicious code to
be executed.
Business Impact:
Compromise of the operating system can lead to exposure of
confidential information, loss of productivity, and further network
compromise. Successful exploitation of this vulnerability could
be used to gain unauthorized access to one.s networks and machines.
Affected Products:
. Microsoft Corporation: Microsoft Internet Explorer 6.0
. Microsoft Corporation: Microsoft Internet Explorer 6.0 SP1
. Microsoft Corporation: Microsoft Internet Explorer 7 Beta 2
. Microsoft Corporation: Windows 95
. Microsoft Corporation: Windows 98
. Microsoft Corporation: Windows 98 Second Edition
. Microsoft Corporation: Windows Me
. Microsoft Corporation: Windows XP
. Microsoft Corporation: Windows 2000 Any version
. Microsoft Corporation: Windows 2003 Any version
. Microsoft Corporation: Windows NT 4.0
______________________________________________________________________
About Internet Security Systems, Inc.
Internet Security Systems, Inc. (ISS) is the trusted security advisor to
thousands of the world.s leading businesses and governments, providing
preemptive protection for networks, desktops and servers. An established
leader in security since 1994, ISS. integrated security platform
automatically protects against both known and unknown threats, keeping
networks up and running and shielding customers from online attacks before
they impact business assets. ISS products and services are based
on the proactive security intelligence of its X-ForceŽ research and
development team . the unequivocal world authority in vulnerability and
threat research. ISS. product line is also complemented by
comprehensive Managed Security Services. For more information, visit
the Internet Security Systems Web site at www.iss.net or call 800-776-2362.
Copyright (c) 2006 Internet Security Systems, Inc. All rights reserved
worldwide.
This document is not to be edited or altered in any way without the
express written consent of Internet Security Systems, Inc. If you wish
to reprint the whole or any part of this document, please email
xforceiss.net for permission. You may provide links to this document
from your web site, and you may make copies of this document in
accordance with the fair use doctrine of the U.S. copyright laws.
Disclaimer: The information within this paper may change without notice.
Use of this information constitutes acceptance for use in an AS IS
condition. There are NO warranties, implied or otherwise, with regard to
this information or its use. Any use of this information is at the
user's risk. In no event shall the author/distributor (Internet Security
Systems X-Force) be held liable for any damages whatsoever arising out
of or in connection with the use or spread of this information.
X-Force PGP Key available on MIT's PGP key server and PGP.com's key
server, as well as at http://www.iss.net/security_center/sensitive.php
Please send suggestions, updates, and comments to: X-Force
xforceiss.net of Internet Security Systems, Inc.
xforceiss.net of Internet Security Systems, Inc.
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
iQCVAwUBRCROlzRfJiV99eG9AQGSkQP/RQnidouXigmjFpKl/Q2WeyyMtYU+uS1G
6ggTDKO1dSjp2fWC1IOkjLrn7zb+SwAI0qdFD6yyiFwIUvD7yWsMDkDaZANtc8Ua
ROc4YkghJuYSlOzV9gNycyt02C3AU4FeQ/VVJOojl0OjfaWZhUn2mdTGkZ2GO4mC
2rZ5grwl/xo=
=za5e
-----END PGP SIGNATURE-----
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]