Contact | Site en Français               

 


 

Vulnerabilities & Threats
 
  VUPEN Security Advisories
  Linux Security Advisories

  Malware Advisories
  Zero-Day Monitor
  Search Engine
 
   

>> Microsoft Internet Explorer Multiple Remote Vulnerabilities (MS08-058)

Title : Microsoft Internet Explorer Multiple Remote Vulnerabilities (MS08-058)
Advisory ID : VUPEN/ADV-2008-2809
CVE ID : CVE-2008-2947 - CVE-2008-3472 - CVE-2008-3473 - CVE-2008-3474 - CVE-2008-3475 - CVE-2008-3476
CWE ID : CWE-20 - CWE-270
Rated as : Critical 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2008-10-14

Advisory Details
 
  Description
  Affected Products
  Solution
  References
Technical Description    Receive VUPEN Security alerts in a Text format  Receive VUPEN Security alerts in a PDF format  Receive VUPEN Security alerts in an XML format  Receive VUPEN Security notifications by SMS 

Multiple vulnerabilities have been identified in Microsoft Windows and Internet Explorer, which could be exploited by remote attackers to gain knowledge of sensitive information or compromise a vulnerable system.

The first issue is caused due to the browser incorrectly interpreting the origin of scripts when setting the Window location object, which could allow an attacker to gain access to a browser window in another domain or Internet Explorer zone, leading to arbitrary code execution. For additional information, see : VUPEN/ADV-2008-1940

The second vulnerability is caused due to the browser incorrectly interpreting the origin of scripts when handling certain HTML elements, which could be exploited to execute arbitrary code or conduct cross-domain scripting attacks.

The third issue is caused due to the browser incorrectly interpreting the origin of scripts when handling certain events, which could allow an attacker to gain access to a browser window in another domain or Internet Explorer zone, leading to arbitrary code execution.

The fourth vulnerability is caused due to the browser incorrectly interpreting the origin of scripts, which could allow atatckers to read cookies or other data from another security zone or domain.

The fifth issue is caused by a memory corruption error when the browser attempts to access an object which has not been initialized or has been deleted, which could be exploited by attackers to execute arbitrary code.

The sixth vulnerability is caused by a memory corruption error when the brwoser attempts to access uninitialized memory while processing certain HTML objects, which could be exploited by attackers to execute arbitrary code via a malicious web page.

Credits

Vulnerabilities reported by David Bloom, Gregory Rubin, Ivan Fratric, ZDI, Thierry Zoller (n.runs) and Lee Dagon (Composica).

ChangeLog

2008-10-14 : Initial release

Vulnerability Management

Subscribe to VUPEN Security VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@vupen.com.
 


Copyright 2003-2008 © VUPEN.COM - Privacy Policy