August 23, 2004 03:23 PM

New IE Flaw Also Affects Windows XP SP2

Rating: (0)
Paul Thurrott
Windows IT Pro
InstantDoc ID #43739

A newly discovered flaw in Microsoft Internet Explorer (IE) affects various IE releases, including the version in Windows XP Service Pack 2 (SP2), leaving users of the incredibly buggy browser open to attack. The flaw, which security firm Secunia disclosed this weekend, affects IE 6, 5.5, and 5.01 and Windows XP SP2 and SP1.
  
Secunia describes the flaw as "highly critical," which is apparently more serious than "critical" but less serious than "wicked critical." The firm says that it created a proof-of-concept attack based on the flaw, which requires users to drag and drop content from a malicious Web site onto their hard disks, thus bypassing IE's security-zone protection. Secunia recommends that IE users disable Active Scripting until Microsoft issues a patch. A more proactive solution would be to use a more secure Web browser: I recommend Mozilla Firefox .
  
Curiously, Microsoft is downplaying the flaw's risk, citing the amount of user interaction required to exploit it. "Given the significant amount of user action required to execute an attack, Microsoft does not consider this to be a high risk for customers," a Microsoft representative said, noting that the company is still investigating the flaw.
  
Meanwhile, a new version of Download.Ject that's circulating on the Web affects all pre-XP versions of Windows. Users who have upgraded to XP SP2 are invulnerable to the attack, according to security researchers. The original Download.Ject surfaced in June, and Microsoft modified SP2 to handle that style of attack.

ARTICLE TOOLS

Want to use this article? Click here for options!

Add a Comment

Mr Md_detroit and Mr Elmurid, it is a rather a rude gesture to dismiss emphatically the evidence put forward by Mr BartLansing. Go to http://www.mikx.de/scrollbar/ and see the evidence before you demonstrate you sheer ignorance.

truehighspeed8/28/2004 10:29:34 AM

You have got to be kidding. Detroit is right, you people really are losers

DEVLIN8/27/2004 8:55:12 AM

Dear Mr. MD_Detroit,

Just how much does MS pay you to say sweet things about them? Your denial of something occurring reminds me of riverboat personnel that deny official, written military testamonials. Just because you claim that it's not important doesn't make it so.

It's getting to the point with the MS browser that one needs to question the value of it's integration to the OS. This integration is its biggest problem. It's quite funny when you think that MS did this on purpose in order to stifle its competition. The continuing blow-back on MS from the secuity leaks--that they designed--will be their own undoing. LOL!

Thanks,
BM_MN

bm_mn8/25/2004 2:09:01 PM

"Who drags and drops things from their browser onto their harddrive with regularity?"

Mac users do. Of course, this vulnerability doesn't affect them, so it doesn't really matter. They can go on using their computers without worry.

WinThose8/25/2004 6:20:30 AM

Here you go, disaffected misfit high school kids, here's a loaded gun, let's show your parents how much you hate them! Over here Islamic terrorists, how would you like a simple recipe to make the equivilent of C4 out of common home products, kill the infidel, viva gihad! Evil hacker scumbags, here it is, a blueprint for your next malware attack, complete with sample source, still beats SP2, could do some real damage with this one -- enjoy!

Oh hey, don't forget these are just to prove it's not media hype, you understand, don't actually use any of these to kill people or destroy IT... oh hell, they already left, hmm...

Thing about all of the above, in the immortal words of Andrew Dice Clay, "upside down it's all the same s#!t." The inherent danger of these constructs has been well proven. Release of these "proofs of concept" makes them available to uninspired creeps who likely never would've come up with anything close on their own. The only thing it will prove is as obvious and predictable as it is tragic: that these "researchers'" work can and will be used against us, the computing public -- remember us? Yes that's right, the people you don't give a damn about... well, looking forward to the destruction your work will spawn this time, good job, keep it up, heaven knows we can always use more mayhem.

-Mark McGinty

mmcginty_SQL 8/24/2004 1:06:36 PM


created another proof-of-concept based on http-equiv's code that hides both
the image to drag and the local folder you drop it to. As a result using the
window scrollbar will install malware in your startup folder.

A little 5x5 pixel "drop zone" will automaticly follow your mouse. Just drag
the window scrollbar as usual (and a hidden image at the same moment) and
whereever you release the mouse button you will drop an exe file to your
shell:startup (as long as you remain inside the browser window of course).

Demo website: http://www.mikx.de/scrollbar/

Dragging the window scrollbar is a common behavior - even if i can't believe
there was a world before mouse wheels. A common user will probably don't
recognize the installation at all.
______________________

Care to reply again, md_detroit?
"
onFocus="clearText(this)"
TABINDEX="2" >Hey MD, you know..pot/kettle=black? You might do a little research...if you bothered you would find

_________________________
To proof it's not a "hype" created by the media or companies like secunia, "mikx"
created another proof-of-concept based on http-equiv's code that hides both
the image to drag and the local folder you drop it to. As a result using the
window scrollbar will install malware in your startup folder.

A little 5x5 pixel "drop zone" will automaticly follow your mouse. Just drag
the window scrollbar as usual (and a hidden image at the same moment) and
whereever you release the mouse button you will drop an exe file to your
shell:startup (as long as you remain inside the browser window of course).

Demo website: http://www.mikx.de/scrollbar/

Dragging the window scrollbar is a common behavior - even if i can't believe
there was a world before mouse wheels. A common user will probably don't
recognize the installation at all.
______________________

Care to reply again, md_detroit?


BartLansing8/23/2004 12:21:32 PM

Such crap. Who drags and drops things from their browser onto their harddrive with regularity? I wish the same people that constantly pick apart Microsoft products for these flaws would also dedicate their time to some of these "oh-so-secure" opensource projects.

md_detroit8/23/2004 10:27:18 AM

You must log on before posting a comment.

Are you a new visitor? Register Here
Free Power Tools Brochure
Get Mark Minasi's 17-page guide today!



      

advertisement

GOOGLE LINKS
SPONSORED LINKS
FEATURED LINKS

White Papers

Your remote offices contain valuable electronic data – are they adequately protected? Learn how proven technologies can reliably and cost-effectively back up a branch office from a central location, in real time, to disk or tape, and even utilize existing backup solutions.

Downloads

PacketTrap IT is a comprehensive and affordable network management and application monitoring solution that solves problems associated with bandwidth, network and application performance, and connectivity. Gain insight into your network - try PacketTrapIT free for 21 days!

Web Seminars

IT administrators have to solve a myriad of problems. This web seminar outlines the ten most common systems management pains - including managing highly distributed systems and dealing with data theft/loss – and the best practices to address each.

eLearning Series

We bring the experts direct to you to share their real-world perspective and expertise. During each event, three sessions stream in real time, so you can learn, ask questions, and get solutions.
Upcoming event: Getting the Most with Exchange 2010 with Paul Robichaux

Subscribe to Windows IT Pro!

DevProConnections ITTV Left-Brain SharePointPro Connections SQL Server Magazine SuperSite for Windows Windows IT Pro

© Penton Media, Inc.

Home About Us Advertise Customer Service Privacy Statement Subscribe/Renew Terms Of Use

Windows is a trademark of the Microsoft group of companies. Windows IT Pro is used by Penton Media Inc. under license from owner.