Microsoft Internet Explorer "createTextRange()" Code Execution

["Fergie" <fergdawg () netzero net>]

Via Secunia.

[snip]

Secunia Research has discovered a vulnerability in Microsoft Internet Explorer, which can be exploited by malicious 
people to compromise a user's system.

The vulnerability is caused due to an error in the processing of the "createTextRange()" method call applied on a radio 
button control. This can be exploited by e.g. a malicious web site to corrupt memory in a way, which allows the program 
flow to be redirected to the heap.

Successful exploitation allows execution of arbitrary code.

The vulnerability has been confirmed on a fully patched system with Internet Explorer 6.0 and Microsoft Windows XP SP2. 
The vulnerability has also been confirmed in Internet Explorer 7 Beta 2 Preview. Other versions may also be affected.

Solution:
Do not visit untrusted web sites.

NOTE: The vendor is currently working on a patch.

[snip]

http://secunia.com/advisories/18680/

- ferg


--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg () netzero net or fergdawg () sbcglobal net
 ferg's tech blog: http://fergdawg.blogspot.com/


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.