|
|
>> Microsoft Internet Explorer Multiple Client-Side Code Execution Vulnerabilities (MS06-042)
|
Multiple vulnerabilities have been identified in Microsoft Internet Explorer, which could be exploited by remote attackers to take complete control of an affected system, disclose sensitive information, or conduct cross domain scripting attacks.
The first issue is due to an error when handling web redirections, which could be exploited by malicious people to conduct cross domain scripting attacks. For additional information, see : VUPEN/ADV-2006-2553
The second vulnerability is due to a memory corruption error when handling HTML pages with certain layout positioning combinations, which could be exploited by remote attackers to execute arbitrary commands by convincing a user to visit a malicious web page.
The third flaw is due to a memory corruption error when handling chained Cascading Style Sheets (CSS), which could be exploited by remote attackers to execute arbitrary commands by convincing a user to visit a malicious web page.
The fourth vulnerability is due to a memory corruption error when handling HTML pages with certain layout positioning combinations, which could be exploited by remote attackers to compromise a vulnerable system.
The fifth flaw is due to memory corruption errors when handling instantiating certain COM objects as ActiveX Controls, which could be exploited by remote attackers to execute arbitrary commands by convincing a user to visit a malicious web page.
The sixth issue is due to an origin validation error when handling specially crafted HTML pages, which could be exploited by malicious people to conduct cross domain scripting attacks.
The seventh flaw is due to an error when processing malformed scripts, which could be exploited by attackers to gain access to the window location of a Web page in another domain.
The eighth issue is due to an error when handling specially crafted FTP links, which could be exploited by attackers to execute arbitrary FTP commands.
Affected Products
Microsoft Internet Explorer 5.01 Service Pack 4 on Microsoft Windows 2000 Service Pack 4
Microsoft Internet Explorer 6 Service Pack 1 on Microsoft Windows 2000 Service Pack 4
Microsoft Internet Explorer 6 Service Pack 1 on Microsoft Windows XP Service Pack 1
Microsoft Internet Explorer 6 for Microsoft Windows XP Service Pack 2
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003 Service Pack 1
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003 (Itanium)
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003 SP1 (Itanium)
Microsoft Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition
Microsoft Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition
Solution
Apply patches :
http://www.microsoft.com/technet/security/Bulletin/MS06-042.mspx
References
http://www.vupen.com/english/advisories/2006/3212
http://www.microsoft.com/technet/security/Bulletin/MS06-042.mspx
Credits
Vulnerabilities reported by Sam Thomas, Cody Pierce, and Will Dormann.
ChangeLog
2006-08-08 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
