Alerts
Alerts
Zero-Day Tracker
Common Name:
IE window()
Date Disclosed:
5/31/2005
Date Patched:
12/13/2005
Vendor:
Microsoft
Application:
Internet Explorer 5.01
Internet Explorer 5.5
Internet Explorer 6
Description:
A vulnerability exists within Internet Explorer which may be exploited by attackers to execute arbitrary code on a remote system by a specially-crafted website. This vulnerability was originally reported as a denial of service, but nearly 6 months later was re-evaluated to be fully exploitable.
Severity:
High
Code Execution:
Yes
Impact:
Arbitrary code execution under the context of the logged in user
A web browser remote code execution vulnerability has a very high impact since the source of the malicious payload can be any site on the Internet. An even more critical problem is generated when clients are administrators on their local hosts, which would run the malicious payload with Administrator credentials.
Mitigation:
Since this vulnerability is patched, the primary mitigation for this vulnerability would be to apply MS05-054. However, other mitigation is available by disabling active scripting for non-trusted sites as detailed in KB240797.
Protection:
Microsoft Patch - MS05-054
Links:
CVE-2005-1790
First Public PoC Code Disclosure (Denial of Service)
Status:
12/13/2005: Patched - MS05-054
Common Name:
IE window()
Date Disclosed:
5/31/2005
Date Patched:
12/13/2005
Vendor:
Microsoft
Application:
Internet Explorer 5.01
Internet Explorer 5.5
Internet Explorer 6
Description:
A vulnerability exists within Internet Explorer which may be exploited by attackers to execute arbitrary code on a remote system by a specially-crafted website. This vulnerability was originally reported as a denial of service, but nearly 6 months later was re-evaluated to be fully exploitable.
Severity:
High
Code Execution:
Yes
Impact:
Arbitrary code execution under the context of the logged in user
A web browser remote code execution vulnerability has a very high impact since the source of the malicious payload can be any site on the Internet. An even more critical problem is generated when clients are administrators on their local hosts, which would run the malicious payload with Administrator credentials.
Mitigation:
Since this vulnerability is patched, the primary mitigation for this vulnerability would be to apply MS05-054. However, other mitigation is available by disabling active scripting for non-trusted sites as detailed in KB240797.
Protection:
- eEye's Blink® Personal Edition protects from this vulnerability.
- eEye's Blink® Professional Edition protects from this vulnerability.
- eEye's Retina® Network Security Scanner scans devices to detect for this vulnerability.
Microsoft Patch - MS05-054
Links:
CVE-2005-1790
First Public PoC Code Disclosure (Denial of Service)
Status:
12/13/2005: Patched - MS05-054
