Internet Explorer 7 Is an Open Door for Attacks
section: microsoft, for your questions: KezNews forum, 15.10.2007
Tip: Click here to update all your PC's outdated driversInternet Explorer 7 on Windows XP and Windows Server 2003 is nothing short of an open door for attacks. Microsoft informed that it is currently investigating a remote code execution vulnerability in various versions of XP and Windows Server 2003 running Internet Explorer 7.
The Redmond company added that Windows Vista users are safe, although the operating system comes with IE7 built in by default. Windows XP SP2, XP Professional x64 Edition, Professional x64 Edition SP2; Windows Server 2003 SP1 and SP2, Windows Server 2003 x64 Edition and SP2 and Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems are all vulnerable to the security flaw, provided they are running IE7. The vulnerability is related to the way the Windows operating system handles Uniform Resource Identifiers (URIs).
"When a user clicks a link to a URI, the application showing that link to users decides how it is supposed to be handled. For traditionally "safe" protocols like mailto: or http: applications often just verify the prefix and then choose to call into the Windows shell32 function ShellExecute() to handle it. This has been the case for a number of years. Windows then launches Internet Explorer passing the URI or launches the preferred email client passing the email address etc. With IE6 installed, ShellExecute() passes the URI to IE which accepts it and inside IE determines it to be invalid. Navigation then fails harmlessly. With Internet Explorer 7 installed, the flow is a bit different", explained Jonathan Ness with the SWI team at Microsoft Security Response Center.
With IE7, Microsoft has implemented additional validation in the process of rejecting a malformed URI. Essentially, malformed URIs will no longer be rejected up front, and instead would be moved to ShellExecute() in order to be fixed. When ShellExecute() is handling URIs in order to make them usable, the process is not safely managed. In Vista, for example, ShellExecute() also rejects the URI, but the copies of Windows XP and Windows Server 2003 do not deliver a similar behavior. Microsoft emphasized that the vulnerability can be successfully exploited only in the limited contexts described above, and that other versions of the Windows operating system with IE7 installed are not affected.
"Our plan is to revise our URI handling code within ShellExecute() to be more strict. While our update will help protect all applications from malformed URI’s, application vendors who handle URI’s can also do stricter validation themselves to prevent malicious URI’s from being passed to ShellExecute(). We have seen several vendors introduce additional validation as a way to protect their customers from this issue", Ness added.
source:
news.softpedia.com
>> Click Here to Run a Free Scan for PC Errors <<
Send link 2 friend | Permalink
MORE RELATED ARTICLES:
Internet Explorer 9, the Evolution || Internet Explorer 8 RTM released || Internet Explorer comes out on top against Phishing || Internet Explorer is now an optional feature in Windows 7 || Internet Explorer 8 RTM - Released To Manufacturing
Comments(9)
improved security? go back to ie6 and your safer from this type of attack, tan using ie7
which was suppose to be more about security...
url attacks now? how can it
become any easier than just with an url?
http:://attackunow.ms is all it
takes!
i really hate that damn browser. i have vista 32 bit ultimate and ie7 and to say it is
the worst browser version i have ever seen. keep freezing or crashing. i removed any plug
in and still doing the same. hate hate hate it!!!
but love firefox!
firefox should be standard, much better than ie7
firefox is clearly better, people like chineseman are just too dumb to try it or to use
it for that matter.
firefox, no validation, fast, recovery from accidental shutdown, what else. ms should let
firefox into its world.
ie 7 is a bit nice tho i must confess. just disable
phising and dont add google toolbars and all others
if you want ff in ie7 use the plug in ie7pro....
great ad blocking and filter
as well as spell checker, tab recovery and history.
if u want ff in ie7 use the plugin ie7pro...well ff has more than spell check, tab
recovery and history.
check out ff list of plugins and addons and themes
etc....uncountable. ie7 can subtitute ff...peace.
ffs what did i type up there? just dont give ms any chance to monopolise the world. we
all like diverse choices.
if i go back to ie 6 will i now have malformed url weakness? and why am i getting not
valid comment message?
No new comments are allowed for this article.
For your questions use our KezNews Forum
Windows 7 RTM 7600.16385.090713-1255 HERE !
IE6 Safer than IE7
By URL Me on 15.10.2007 - 22:10