funsec mailing list archives
Microsoft Internet Explorer "createTextRange()" Code Execution
From: "Fergie" <fergdawg () netzero net>
Date: Wed, 22 Mar 2006 18:13:32 GMT
Via Secunia. [snip] Secunia Research has discovered a vulnerability in Microsoft Internet Explorer, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to an error in the processing of the "createTextRange()" method call applied on a radio button control. This can be exploited by e.g. a malicious web site to corrupt memory in a way, which allows the program flow to be redirected to the heap. Successful exploitation allows execution of arbitrary code. The vulnerability has been confirmed on a fully patched system with Internet Explorer 6.0 and Microsoft Windows XP SP2. The vulnerability has also been confirmed in Internet Explorer 7 Beta 2 Preview. Other versions may also be affected. Solution: Do not visit untrusted web sites. NOTE: The vendor is currently working on a patch. [snip] http://secunia.com/advisories/18680/ - ferg -- "Fergie", a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawg () netzero net or fergdawg () sbcglobal net ferg's tech blog: http://fergdawg.blogspot.com/ _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Microsoft Internet Explorer "createTextRange()" Code Execution Fergie (Mar 22)