Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Exploit code attacks unpatched IE bug ( Even the new SP2-Service Pack 2-is vulnerable )
The Register ^ | Monday 10th January 2005 12:08 GMT | John Leyden

Posted on 01/10/2005 11:13:42 AM PST by Ernest_at_the_Beach

The Register » Security » Network Security »

Original URL: http://www.theregister.co.uk/2005/01/10/ie_sp2_exploit/

Exploit code attacks unpatched IE bug

By John Leyden (john.leyden at theregister.co.uk)
Published Monday 10th January 2005 12:08 GMT

Code which exploits a vulnerability in the HTML Help control of Internet Explorer has been released onto the net. Secunia has upgraded the vulnerability (http://secunia.com/SA12889), uncovered in October 2004, to "extremely critical". Even users who have upgraded to Windows XP SP2 with all available patches are affected, the security reporting firm warns.

"The vulnerability can be exploited by malicious people to place and execute arbitrary programs on a client system if a user visits a malicious website. It doesn't require user interaction," Thomas Kristensen, CTO, told El Reg.

Click Here

"The vulnerability was originally discussed as the Drag'n'Drop vulnerability back in October 2004. The new development only utilises flaws in the HTML Help control. Users can only protect themselves by disabling ActiveX support or using another product."

Secunia has published an online test for the vulnerability here (http://secunia.com/internet_explorer_command_execution_vulnerability_test). ®

Related stories

Mozilla and Firefox flaws exposed (http://www.theregister.co.uk/2005/01/07/mozilla_flaws/)
MS quashes infamous Bofra bug (http://www.theregister.co.uk/2004/12/02/ie_iframe_fix/)
IE exploits top web security threat list (http://www.theregister.co.uk/2004/11/02/web_security_survey_scansafe/)


Security holes that run deep (http://www.theregister.co.uk/2004/12/21/simple_aspnet_security_hole/)


TOPICS: News/Current Events; Technical
KEYWORDS: computersecurity; exploit; getamac; internetexploiter; lowqualitycrap; microsoft; patch; securityflaw; spyware; trojan; virus; windows; worm
Navigation: use the links below to view more comments.
first previous 1-2021-27 last
To: Ernest_at_the_Beach
RE Test: Mozilla Firefox passes! ;-)
e.g. - nothing happens when you clicl on the test line.
21 posted on 01/10/2005 1:42:07 PM PST by Tunehead54 (Repeal the 22nd Amendment!)
[ Post Reply | Private Reply | To 14 | View Replies]

To: Ernest_at_the_Beach

Humm. Yes, it say's I'm vulnerable. But I'm not at all keen on disabling my ability to move files around. That's pretty basic.


22 posted on 01/10/2005 2:41:15 PM PST by Cicero (Marcus Tullius)
[ Post Reply | Private Reply | To 14 | View Replies]

To: Cicero
Evidently something is blocking it.

Make sure your HOSTS file hasn't been hijacked.

23 posted on 01/10/2005 5:51:15 PM PST by LTCJ
[ Post Reply | Private Reply | To 13 | View Replies]

To: Ernest_at_the_Beach

IE is functioning as designed. It was originally designed to be a trojan delivery mechanism.

If you don't belive produce one aspect of its behavior that contradicts my claim ;-)


24 posted on 01/10/2005 6:52:02 PM PST by festus (The constitution may be flawed but its a whole lot better than what we have now.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Lazamataz

I doubt it, I don't think this is a virus thingie!!


25 posted on 01/10/2005 6:54:35 PM PST by Ernest_at_the_Beach (A Proud member of Free Republic ~~The New Face of the Fourth Estate since 1996.)
[ Post Reply | Private Reply | To 16 | View Replies]

To: Wacka

I setup a browsing machine with Xandros V3, (Linux) and Firefox....works great!

I just don't use my XP machines on the Internet.

Too dangerous.


26 posted on 01/10/2005 6:58:14 PM PST by Ernest_at_the_Beach (A Proud member of Free Republic ~~The New Face of the Fourth Estate since 1996.)
[ Post Reply | Private Reply | To 18 | View Replies]

To: Lazamataz
Does Norton AV protect against this?

Sure it does. Just open NAV and stare at it while imagining you're at Free Republic. Just don't open Internet Exploder to view the internet and you're fine cuz NAV won't defuse that bomb.

27 posted on 01/11/2005 8:20:47 AM PST by Malsua
[ Post Reply | Private Reply | To 16 | View Replies]


Navigation: use the links below to view more comments.
first previous 1-2021-27 last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson