I think I found a Security vulnerability in IE 6.0

G

Guest

Not a very major issue, but a malicous user has the ability to crash Internet
Explorer 6.0 on an unsuspecting user's computer., not sure to the extent of
what browser versions this affects, as I have only tested IE 6.0. The issue
occurs when the offending page contains an IFRAME and the following
Javascript code is run in:

document.all['myIFrame'].src = "javascript:;";
window.top.close();

In my situation the code was run from a modal dialog so there was no
security warning about the close. My assumption is that the Iframe is in a
vulnerable state when the close() function is called, causing a memory
leak/protection fault of some kind.. just my guess..
Regards,
Andrew
 
M

Michael

flatliner60 said:
Not a very major issue, but a malicous user has the ability to crash Internet
Explorer 6.0 on an unsuspecting user's computer., not sure to the extent of
what browser versions this affects, as I have only tested IE 6.0. The issue
occurs when the offending page contains an IFRAME and the following
Javascript code is run in:

document.all['myIFrame'].src = "javascript:;";
window.top.close();

In my situation the code was run from a modal dialog so there was no
security warning about the close. My assumption is that the Iframe is in a
vulnerable state when the close() function is called, causing a memory
leak/protection fault of some kind.. just my guess..
Regards,
Andrew
Click to expand...
well if a site is bad enough to exploit you... there doing a favor by
closing it
 
G

Guest

Surely I don't need to point out the flaws in that logic...
If the page is hosted in an E-mail from a trusted sender, goodbye Outlook or
Outlook Express...
If the code is hosted in a scripted banner ad... goodbye host page...
If the IE version is earlier than 6.0 (assuming this issue affects earlier
versions of IE) Then say goodbye to every single instance IE running on your
desktop...

- Andrew

Michael said:
flatliner60 said:
Not a very major issue, but a malicous user has the ability to crash Internet
Explorer 6.0 on an unsuspecting user's computer., not sure to the extent of
what browser versions this affects, as I have only tested IE 6.0. The issue
occurs when the offending page contains an IFRAME and the following
Javascript code is run in:

document.all['myIFrame'].src = "javascript:;";
window.top.close();

In my situation the code was run from a modal dialog so there was no
security warning about the close. My assumption is that the Iframe is in a
vulnerable state when the close() function is called, causing a memory
leak/protection fault of some kind.. just my guess..
Regards,
Andrew
Click to expand...
well if a site is bad enough to exploit you... there doing a favor by
closing it
Click to expand...
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

vulnerability in KAV/KIS 6.0/7.0 ... patched 0
Serious security flaw found in IE 7
Internet Explorer 6.0 SP2 File Download Security Warning Bypass Exploit 1
IE 6.0 SP1 - Something wierd that I need help with. 1
IE 6.0 Unable to Download files - Attempting to When you attempt to download a file from a Web site, 6
ADODB - Safety settings on this computer prohibit accessing a data source on another domain 3
IE 6.0 Not opening completly when clicking on a link 5
IE 6.0 (SP1) - AOL - Security question (maybe) 3

Top