Thu 18 Aug. 2005

YA Reason to Avoid IE

FrSIRT Advisories: Microsoft Internet Explorer “Msdds.dll” Remote Code Execution / Exploit

A critical vulnerability was identified in Microsoft Internet Explorer, which could be exploited by remote attackers to execute arbitrary commands. This issue is due to a memory corruption error when instantiating the “Msdds.dll” (Microsoft Design Tools Diagram Surface) object as an ActiveX control, which could be exploited by an attacker to take complete control of an affected system via a specially crafted Web page.

This vulnerability has been confirmed on Windows XP SP2 with Microsoft Internet Explorer 6 SP2 and Microsoft Office 2002 (fully patched).

Note : The “Msdds.dll” library is installed with Microsoft Office and Microsoft Visual Studio.

Update: 18 Aug:
Apparently only DLL Version 7.0.9064.9112 is vulnerable, in Office 2002 and Visual Studio 2002. Heise reports that a kill-bit needs to be set in the registry:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\

The key {EC444CB6-3E7E-4865-B1C3-0DE72EF39B3F} needs to be set to: “Compatibility Flags”=dword:00000400

See Jan Berend Wever’s COM objects and MSIE vulnerabilities recap + additional fix

And then there’s ZOTOB and The battle of Plug&Play worms!

(via Heise Online)

Comments »

The URI to TrackBack this entry is: http://sennosen.blogsome.com/2005/08/18/ya-reason-to-avoid-ie/trackback/

No comments yet.

RSS feed for comments on this post.

Leave a comment

Line and paragraph breaks automatic, e-mail address never displayed, HTML allowed: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong>