Cross-Domain Vulnerability In Microsoft Internet Explorer 6

June 27th, 2008

Cross-Domain Vulnerability In Microsoft Internet Explorer 6

New Microsoft Internet Explorer 6 vulnerability may allow a remote, unauthenticated attacker to execute arbitrary script in the context of another domain. A proof-of-concept code for this vulnerability is already available. The vulnerability could allow an attacker to take a variety of actions, including stealing cookies, hijacking a web session, or stealing authentication credentials. At this time, Internet Explorer 7 and Firefox do not appear to be affected by this issue.

The vulnerability is caused due to an input validation error when handling the “location” or “location.href” property of a window object. The vulnerability was first published in an article in Chinese Security E-zines, called pstzine, two days ago. The issue is very similar to the “Ghost Page” issues in IE, which was originally raised by security researchers, Manuel Caballero and Fukami at Microsoft Bluehat 2008.

Until a patch is available, IE6 users should disable scripting in the browser. Another option might be an upgrade to Microsoft Internet Explorer 7 or usage of alternative browser to help mitigate the risk.

Email, Bookmark or Share:

More on CyberInsecure:

Microsoft Internet Explorer Script Injection Vulnerability

Microsoft Office Snapshot Viewer ActiveX Control Vulnerability

Microsoft Releases Windows XP Service Pack 3 But Locks IE7 Uninstall

Remote Code Execution Vulnerability In The ActiveX Control For The Microsoft Access Snapshot Viewer Added Into Neosploit

Researchers discover new cross-browser exploit that affects all major desktop platforms

Posted in Microsoft, Software, Vulnerabilities |

Print This Post

This entry was posted on Friday, June 27th, 2008 at 7:03 am and is filed under Microsoft, Software, Vulnerabilities. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

If you found this information useful, consider linking to it from your own website.
Just copy and paste the code below into your website (Ctrl+C to copy)
It will look like this: Cross-Domain Vulnerability In Microsoft Internet Explorer 6

Comments with unsolicited links to other resources will be marked as spam. Please leave your real email, it wont be published.

Latest Virus Descriptions

not-a-virus:NetTool.Win32.Transmit.a 07 Oct 2008 11:59:00 +040
This is a potentially unwanted program (PUP). It is a Windows PE EXE file. It is 32768 bytes in size. It is packed using PECompact. The unpacked file is approximately 192KB in size.
Trojan-Downloader.JS.Agent.bxr 07 Oct 2008 11:56:00 +040
This Trojan downloads another malicious program via the Internet and launches it on the victim machine without the user’s knowledge or consent. It is a Visual Basic Script file. It is 1159 bytes in size.
Worm.Win32.AutoRun.bnb 07 Oct 2008 11:39:00 +040
This worm propagates by creating copies of itself on local disks and write-accessible network resources. It is a Windows PE EXE file. It is 46592 bytes in size. It is packed using UPX. The unpacked file is approximately 107MB in size. Installation The worm copies its executable file to the…
Trojan.Win32.ConnectionServices.e 07 Oct 2008 11:35:00 +040
This Trojan has a malicious payload. It is a Windows PE EXE file. It is 319488 bytes in size.
Trojan.Win32.Agent.bve 06 Oct 2008 13:09:00 +040
This Trojan has a malicious payload. The program itself is a Windows PE DLL file. It is approximately 100KB in size. Installation The Trojan copies its executable file to the Windows system directory: %System%\mstmdm.dll In order to ensure that the Trojan is launched automatically each time the…
Trojan-Downloader.JS.Psyme.ali 06 Oct 2008 12:50:00 +040
This Trojan downloads another program via the Internet without the user’s knowledge or consent. It is a Visual Basic Script file. It is 10881 bytes in size.
Email-Worm.Win32.Joleee.ak 06 Oct 2008 12:44:00 +040
This malicious program is a Windows PE EXE file. It is 45056 bytes in size. Installation When launched, the worm copies its executable file to the Windows root directory: [%WinDir%\services.exe In order to ensure that the worm is launched automatically each time the system is booted, it adds a…
Backdoor.Win32.Delf.duc 03 Oct 2008 18:24:00 +040
This malicious program is a Trojan. It is a Windows PE EXE file. It is 447488 bytes in size.
Trojan-Downloader.Win32.Agent.qlh 03 Oct 2008 18:21:00 +040
This Trojan downloads another program and launches it on the victim machine without the user’s knowledge or consent. It is a Windows PE EXE file. It is 49152 bytes in size. It is written in C++.
Exploit.JS.Agent.sc 03 Oct 2008 18:19:00 +040
This malicious program is an exploit which uses a vulnerability in the RealAudioObjects.RealAudio Active X control to download other malicious programs via the Internet and launch them on the victim machine. The program is an HTML page which contains Java Script scenarios. It is 5294 bytes in…

CyberInsecure.com

Cross-Domain Vulnerability In Microsoft Internet Explorer 6

Leave a Reply

Categories

Archives

Links

Internet Threat Level

Recent Enteries

Vendor Security Alerts

Subscribe

Members

Latest Virus Descriptions