MS Internet Explorer 7 Popup Window Address Bar Spoofing Vulnerability

March 29th, 2008

MS Internet Explorer 7 Popup Window Address Bar Spoofing Vulnerability

Juan Pablo Lopez Yacubian reported that Internet Explorer 7 (also in all MS Vista versions) is affected by a URI-spoofing vulnerability.

An attacker may leverage this issue by inserting strings to spoof the source address of a file presented to an unsuspecting user. This may lead to a false sense of trust because the user may be presented with a source address of a trusted site while interacting with the attacker’s malicious site.

To exploit this issue, an attacker must entice an unsuspecting user to view a maliciously crafted web document. The following example exploit is available:

http://es.geocities.com/jplopezy/iespoof.html

Reports indicate that unspecified versions of Firefox are also prone to this issue, but that has not been confirmed.

Currently there are no vendor-supplied patches. If you are aware of a patch or more recent information, please comment.

Email, Bookmark or Share:

More on CyberInsecure:

Cross-Domain Vulnerability In Microsoft Internet Explorer 6

Microsoft Internet Explorer Script Injection Vulnerability

Apple Safari For Windows Critical Vulnerabilities

Basic Flaws Allow Phishing And Spamming Vulnerabilities In iPhone

Bogus Twitter Profiles Are Being Used To Spread Malware

Posted in Microsoft, Vista, Vulnerabilities |

Print This Post

This entry was posted on Saturday, March 29th, 2008 at 5:14 pm and is filed under Microsoft, Vista, Vulnerabilities. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Comments with unsolicited links to other resources will be marked as spam. Please leave your real email, it wont be published.

Latest Virus Descriptions

Trojan-Downloader.Win32.Banload.dcd 07 Aug 2008 17:57:00 +040
This Trojan downloads other files via the Internet and launches them for execution on the victim machine without the user’s knowledge or consent. It is a Windows PE EXE file. It is 113152 bytes in size. It is not packed in any way. This Trojan is written in Visual Basic. Installation Once…
Trojan-Downloader.Win32.Agent.fpp 07 Aug 2008 17:48:00 +040
This Trojan downloads another program via the Internet and launches it on the victim machine without the user’s knowledge or consent. It is a Windows PE EXE file. It is 38400 bytes in size. It is written in C++. Installation Once launched, the Trojan copies its body to the Windows system…
Trojan-Downloader.Win32.Nurech.bz 07 Aug 2008 17:39:00 +040
This Trojan downloads another program via the Internet without the user’s knowledge or consent. It is a Windows PE EXE file. It is 7293 bytes in size. Installation When launching, the Trojan injects its code into the system process “svchost.exe” and deletes its original file.
Backdoor.PHP.C99Shell.w 04 Aug 2008 13:29:00 +040
This Trojan provides a remote malicious user with access to the victim machine. It is a PHP script. It is 229051 bytes in size. Installation This backdoor can be installed on a web server by a remote malicious user by uploading it via FTP, using the administrator’s log-in details which have already…
HackTool.Perl.IrBot.d 04 Aug 2008 13:22:00 +040
This malicious program is a hacking utility. It is a Perl script. The size of infected files may vary from 12KB to 69KB.
Virus.Win32.Gpcode.ak 06 Jun 2008 10:55:00 +040
This malicious program encrypts files on the victim machine. It is a Windows PE EXE file 8030, bytes in size.
Trojan-Downloader.JS.Multi.ca 23 May 2008 18:06:00 +040
This Trojan downloads another program via the Internet and launches it on the victim machine without the user’s knowledge or consent. It is encrypted Java Script within an HTML document. It is 14147 bytes in size.
Backdoor.Win32.Agent.ich 23 May 2008 18:03:00 +040
This Trojan provides a remote malicious user with access to the victim machine. It is a Windows PE EXE file. It is 48640 bytes in size. It is packed using UPX. The unpacked file is approximately 360KB in size. Installation The Trojan extracts the following file from its body:…
Rootkit.Win32.Agent.pp 23 May 2008 17:45:00 +040
This Trojan masks its presence in the system from users and from other programs. It is a Windows PE SYS file. It is 40960 bytes in size. It is not packed in any way. It is written in C. Installation This malicious program will be installed to the victim machine together with other malicious…
Trojan.Win32.Agent.dcc 23 May 2008 17:43:00 +040
Installation Once launched, the Trojan copies its executable file as shown below: %System%\drivers\runtime.sys In order to ensure that the Trojan is launched each time the system is started, it creates a system service called “Runtime” which launches the Trojan executable file each time Windows is…

CyberInsecure.com

MS Internet Explorer 7 Popup Window Address Bar Spoofing Vulnerability

Leave a Reply

Categories

Archives

Links

Internet Threat Level

Recent Enteries

Vendor Security Alerts

Subscribe

Memebers

Latest Virus Descriptions