Internet Explorer IFRAME Buffer Overflow Vulnerability SP1

**Anilrgowda** · 08-Sep-2006, 12:39 PM

Internet Explorer IFRAME Buffer Overflow Vulnerability

Secunia Advisory: SA12959
Release Date: 2004-11-02
Last Update: 2004-11-04

Critical:
Extremely critical
Impact: System access

Where: From remote

Solution Status: Unpatched

Software: Microsoft Internet Explorer 6

Select a product and view a complete list of all Patched/Unpatched Secunia advisories affecting it.

Description:
A vulnerability has been reported in Internet Explorer, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to a boundary error in the handling of certain attributes in the <IFRAME> HTML tag. This can be exploited to cause a buffer overflow via a malicious HTML document containing overly long strings in the "SRC" and "NAME" attributes of the <IFRAME> tag.

Successful exploitation allows execution of arbitrary code.

The vulnerability has been confirmed in the following versions:
* Internet Explorer 6.0 on Windows XP SP1 (fully patched).
* Internet Explorer 6.0 on Windows 2000 (fully patched).

NOTE: This advisory has been rated "Extremely critical" as a working exploit has been published on public mailing lists.

Solution:
The vulnerability does not affect systems running Windows XP with SP2 installed.
Use another product.

08-Sep-2006, 12:39 PM	#1 (permalink)
Anilrgowda Administrator Posts: 18,715 Join Date: Jan 2006 Rep Power: 10 IM:	Internet Explorer IFRAME Buffer Overflow Vulnerability SP1 Internet Explorer IFRAME Buffer Overflow Vulnerability Secunia Advisory: SA12959 Release Date: 2004-11-02 Last Update: 2004-11-04 Critical: Extremely critical Impact: System access Where: From remote Solution Status: Unpatched Software: Microsoft Internet Explorer 6 Select a product and view a complete list of all Patched/Unpatched Secunia advisories affecting it. Description: A vulnerability has been reported in Internet Explorer, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error in the handling of certain attributes in the <IFRAME> HTML tag. This can be exploited to cause a buffer overflow via a malicious HTML document containing overly long strings in the "SRC" and "NAME" attributes of the <IFRAME> tag. Successful exploitation allows execution of arbitrary code. The vulnerability has been confirmed in the following versions: * Internet Explorer 6.0 on Windows XP SP1 (fully patched). * Internet Explorer 6.0 on Windows 2000 (fully patched). NOTE: This advisory has been rated "Extremely critical" as a working exploit has been published on public mailing lists. Solution: The vulnerability does not affect systems running Windows XP with SP2 installed. Use another product.

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Nominum DNS Protects Over 120 Million Internet Users from New Vulnerability	newsprovider	Security News	0	06-Aug-2008 05:39 AM
Error message when you try to install Internet Explorer 7: "Internet Explorer 7 could	Iphone	Internet Explorer Error	0	23-Apr-2007 12:41 AM
Internet Explorer open whenever you close a Windows Explorer Window	Anilrgowda	Internet Explorer Error	1	08-Mar-2007 11:48 PM
Zipgenius Multiple Archive Handling Buffer Overflow	kingaff	Programming tutorials	0	23-Feb-2007 05:55 AM
Internet Explorer cannot open the Internet site	Anilrgowda	Internet Explorer Error	0	29-Jan-2007 07:17 AM

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)