Microsoft Internet Explorer ImageMap URL Spoof Vulnerability

From: Kurczaba Associates advisories (advisories_at_kurczaba.com)
Date: 05/17/04

Next message: Janek Vind: "[waraxe-2004-SA#029 - Possible remote file inclusion in PhpNuke 6.x - 7.3]"

Previous message: Niels Bakker: "Re: Denial of Service Vulnerability in IEEE 802.11 Wireless Devices"
Next in thread: Drew Copley: "RE: Microsoft Internet Explorer ImageMap URL Spoof Vulnerability"
Maybe reply: Drew Copley: "RE: Microsoft Internet Explorer ImageMap URL Spoof Vulnerability"
Maybe reply: thegeekmeister_at_SAFe-mail.net: "Re: Microsoft Internet Explorer ImageMap URL Spoof Vulnerability"
Maybe reply: sandrijeski_at_yahoo.com: "Re: Microsoft Internet Explorer ImageMap URL Spoof Vulnerability"
Maybe reply: http-equiv_at_excite.com: "Re: Microsoft Internet Explorer ImageMap URL Spoof Vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Mon, 17 May 2004 14:14:32 -0400
To: bugtraq@securityfocus.com

http://www.kurczaba.com/securityadvisories/0405132.htm
-------------------------------------------------------------

Vulnerability ID Number:
0405132

Overview:
A vulnerability has been found in Microsoft Internet Explorer. A
specially coded ImageMap can be used to spoof the URL displayed in the
lower, left hand corner of the browser.

Vendor:
Microsoft (http://www.microsoft.com)

Affected Systems/Configuration:
The versions affected by this vulnerability are Microsoft Internet
Explorer 5 and 6.

Vulnerability/Exploit:
An ImageMap can be used to spoof the URL displayed in the lower, left
hand of the browser. View the "Proof of Concept" example for details.

Workaround:
None so far.

Proof of Concept:
http://www.kurczaba.com/securityadvisories/0405132poc.htm

Date Discovered:
May 13, 2004

Severity:
High

Credit:
Paul Kurczaba
Kurczaba Associates
http://www.kurczaba.com/

Next message: Janek Vind: "[waraxe-2004-SA#029 - Possible remote file inclusion in PhpNuke 6.x - 7.3]"

Previous message: Niels Bakker: "Re: Denial of Service Vulnerability in IEEE 802.11 Wireless Devices"
Next in thread: Drew Copley: "RE: Microsoft Internet Explorer ImageMap URL Spoof Vulnerability"
Maybe reply: Drew Copley: "RE: Microsoft Internet Explorer ImageMap URL Spoof Vulnerability"
Maybe reply: thegeekmeister_at_SAFe-mail.net: "Re: Microsoft Internet Explorer ImageMap URL Spoof Vulnerability"
Maybe reply: sandrijeski_at_yahoo.com: "Re: Microsoft Internet Explorer ImageMap URL Spoof Vulnerability"
Maybe reply: http-equiv_at_excite.com: "Re: Microsoft Internet Explorer ImageMap URL Spoof Vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Microsoft Internet Explorer ImageMap URL Spoof Vulnerability
... Microsoft Internet Explorer ImageMap URL Spoof Vulnerability ...
(Bugtraq)
VBS_REDLOF.A
... The malware runs on infected systems with unpatched VM ... ActiveX component vulnerability. ... Installing patches or the ... latest version of Microsoft Internet Explorer makes this ...
(microsoft.public.security.virus)
Re: Javascript in IE may spoof the whole screen
... Javascript in IE may spoof the whole screen ... > security implications. ... susceptible to the, com.ms.activeX.ActiveXComponent vulnerability ...
(Bugtraq)