New vulnerability in IE uncovered
Posted on 22 Mar 2006 at 10:42
A security researcher has discovered a new vulnerability in Internet Explorer 6. Specially crafted HTML tags built into a web page can cause IE to crash.
In a security notification, Michal Zalewski writes 'This might not come as a surprise, but there appears to be a *very* interesting and apparently very much exploitable overflow in Microsoft Internet Explorer'.
The vulnerability is caused by an array boundary error in the handling of HTML tags with multiple event handlers. According to security firm Secunia, by specifying a tag with 94 or more event handlers IE will then attempt to write memory array out of bounds.
Zalewski says the exploit works with a fully patched version of Internet Explorer 6 with Windows XP Service Pack 2. Other browsers such as Firefox and Opera are not susceptible to the flaw. Nevertheless, Secunia has marked the exploit as 'non-critical'.
Microsoft says it is aware of the problem and is looking into it. However, given the 'non-critical' nature of the vulnerability, the earliest a fix is likely to appear is on the next 'patch Tuesday' in April.
Anyone who feels like experiencing the exploit themselves Zalewski offers a site where visitors can crash their browser.
Author: Steve Malone
advertisement
- Why Britain's watchdogs have fewer teeth than goldfish
- Tabbed documents: how to make Office 2010 great
- Outlook 2010 People Pane – does it spell death to Xobni
- Microsoft Outlook 2010 screenshots
- Co-Authoring in Word 2010 and SharePoint Foundation 2010
- Microsoft Outlook 2010 screenshots: Backstage view
- Flash 10.1: Developing for Desktop and Device
- Microsoft Office 2010 screenshots: Recover unsaved items
- Microsoft Word 2010 screenshots: Text Effects
- Microsoft Word 2010: inserting screenshots
- Getting to grips with Microsoft's IT Health Environment Scanner
- Virtualise your servers
- The changing face of travel gadgets
- Build your own distributed file system
- The bulletproof Dell that costs an arm and a leg
- Microsoft Office 2010 Technical Preview: Q&A
- Lawnmowers, the TyTN II and one odd insurance request
- There'll never be a bulletproof OS
- How far can we trust apps?
- Five nice touches in Outlook 2010
advertisement
Printed from www.pcpro.co.uk

