NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Secunia Advisories> 2003-q2

[sec-adv] Outlook Express File Download Security Restriction Bypass

From: Secunia Security Advisories (sec-advsecunia.com)
Date: Mon May 26 2003 - 11:06:15 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
Outlook Express File Download Security Restriction Bypass

READ ONLINE:
http://www.secunia.com/advisories/8841/

CRITICAL:
Less critical

IMPACT:
Security Bypass

WHERE:
From remote

SOFTWARE:
Microsoft Outlook Express 6

DESCRIPTION:
A vulnerability has been identified in Outlook Express, which can be
exploited to bypass the file download security restriction.

It is possible to download a file in Outlook Express even though it
has been configured to run in Internet Explorer's "Restricted Zone"
and file downloads have been disabled.

The vulnerability can be exploited by constructing a special email.
When viewed, the email will fetch an URL, which invokes a certain
media file (eg. ".asf"). This will open Windows Media Player to play
the media file. Script features in this can then open Internet
Explorer and fetch an URL referencing a malicious file thereby
circumventing the file download restriction.

NOTE: This vulnerability does not allow automatic download and
execution of a file but presents the user with a download dialog box.

SOLUTION:
Uninstall Windows Media Player or upgrade to version 9.

REPORTED BY / CREDITS:
http-equiv

OTHER REFERENCES:
Earlier related vulnerability:
http://security.greymagic.com/adv/gm002-ie/

----------------------------------------------------------------------

Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]