Extremely Critical IE6/SP2 Exploit Found

Spad writes "Secunia is reporting on three vulnerabilities in IE6 running on XP SP2. Any of these, in combination with an inappropriate behaviour where the ActiveX Data Object (ADO) model can write arbitrary files, can be exploited to compromise a user's system. Moreover, the vulnerability can be used to delete files from the user's system. Secunia says 'Solution: Use another product.'"

Test site

[Dancin_Santa]

They've also posted a test site.

No, you click it first.

Re:Test site

[Sirch]

Hooray for Windows 98!

Never thought I'd be saying that... *sigh*

Re:Test site

[MarkRose]

I click it but nothing happens. When are site designers going to learn there are other browsers besides IE? Don't they know that Firefox's market sharing is growing? Clueless idiots!

Re:Test site

[Alsee]

If Firefox is going to have any chance at competing then the developers are going to have to get on the ball and implement fully compatible functionality. It is absolutely unacceptable that the Secuna test site does not function as intended.

I know we all want to blame Microsoft for breaking compatibility, but face it, IE is the de facto standard. It is up to us to ensure that if it works in IE then it will work in Firefox just as well, if not better.

-

Re:Test site

[l3v1]

Also, please keep in mind that Firefox has had more high/critical security vulnerabilties in the last year than IE has

Uhmm, without checking, just remember that most of the holes IE has are years old. Who cares whether Firefox had more bugs in a time period, if those get damn quickly corrected, and btw most of last years' FFox holes are only pre-1.0.

And one more thing: the dogs ass, maybe that's not the worst place one can be :) At least FFox users are out of that ass, while those with IE... well use your imagination :D :P

Re:Test site

[Citizen+of+Earth]

I know we all want to blame Microsoft for breaking compatibility, but face it, IE is the de facto standard.

I think that the Firefox developers should give credit where its due. They should organize another pledge campaign to raise $10,000.00 to give to Microsoft as a token of good will for all of the advertising that Microsoft has done for Firefox. Although the actual advertising contribution of Microsoft is at least a thousand times greater, this would help coax Microsoft toward continuing their generous support and [this is the serious part] the press would eat it up, contributing another $5M worth of free advertising.

Re:Test site

Doesn't do anything under Lynx.

But can it be used to...

[FullCircle]

delete IE?

or maybe install Firefox?

Re:But can it be used to...

And finally Open Source would be truly viral :-)

Heh

[tektek]

Even a fully patched sp2 is in danger. Good news for Firefox fanboys?

Re:Heh

Yeah, if your grandma hasn't spent at least $50 on third-party security software plus a yearly antivirus subscription fee, plus made sure to configure her firewall correctly and run virus and spyware scans weekly, plus made sure to create a restricted user account that she runs IE under, why then she has only herself to blame. Obviously Microsoft is doing everything in its power to protect her.

Re:liars!

[djplurvert]

Well, you've been lucky, one of these days you are going to run afoul of one of the more dangerous internets.

Re:Nothing to see here....

[LewsTherinKinslayer]

This post is both insightful and flamebait at the same time. I love how objective people are(n't.)

Re:A worm that deletes everything.

[eofpi]

Well, there's always hoping for this to happen....

it's not a vulnerability...

[i+3+joo!]

it's an IE feature.

Surfing with IE

[The+Bringer]

I have made my own little extreme sport out of it. I fill my old box with all of my financial information, and surf around using IE. I think Microsoft is pretty impressed, because they keep sending me boxes of Viagra and dog crap.

Phew, Slashdot's back to normal

#!/microsoft/bash

After today's pro-Microsoft articles, its about time we got back to bashing!

Re:Not working

[weicco]

Internet Explorer Script Error

An error has occured in the script on this page.

Line: 2
Char: 324
Error: Unterminated string constant
blaablaablaa
Do you want to continue running scripts on this page?

Hell no!

Pff,

You know what? I'll just stop using the internet. I'll just .................

Re:A worm that deletes everything.

Running WinXP SP2 and fully patched system. I run Norton anti-virus, spybot, Ad-aware and now MS Antispyware and enabled autoupdate.

Checked out Secunia, ran their test and my system was found vulnerable.

What more should I patch?

If your system was vulnerable, then you still missed one critical patch to your hard disk partition. You can download it here.

Re:Mac

I'd hug mine but i'm enjoying the blowjob it's giving me at the moment.

Re:Mac

[northcat]

/hug Browsers-other-than-IE
/hug Linux
/hug FreeBSD
/hug OpenBSD
/hug NetBSD
/hug All-the-other-BSDs
/hug All-OSes-and-architectures-that-are-not-windows-on -x86

Re:Delete files?

[Spy+Hunter]

Exactly. Even on vulnerabilities that can execute arbitrary code, they always list a bunch of other silly little things they can do, like cross-site scripting or my personal favorite "view the content of arbitrary files in known locations".

If they reported the evening news the same way it would sound like this: "Today terrorists announced they have armed an atomic bomb in the middle of Los Angeles. They also announced that they have control of several hand grenades and also some water balloons and cap guns, and they're not afraid to use them!"

Re:Delete files?

Re:Delete files? (Score:0, Redundant)
by Neuroelectronic (643221)
This should be modded redundant. [...]

Priceless :-)

Re:It fries Safari

[coyotecult]

Beachball of death is just so much more fun and sunny sounding than blue screen of death! MS should've reworked their PR on that one.

Re:Delete files?

[lachlan76]

Actually, I would have said it was more like "Today terrorists have announced that they have armed an atomic bomb in the middle of Los Angeles. If it goes off, it may burn you!"

Re:BFD

[Ghostgate]

"Fool me once, shame on you. Fool me 621498 times, shame on me."

GWB said that, right?

Help me!!

[Piranhaa]

Hey can someone please tell me how I can find out where my windows is installed? It says here http://secunia.com/internet_explorer_command_execu tion_vulnerability_test that windows needs to be installed in c:\windows\ for their test exploit to work 'properly'

Computer specs: iBook g3 800mhz...

I hope that helps a little

Re:Help me!!

[frogger01]

Your windows directory should be in /dev/null/

good reflexes

[camcorder]

...(reported to Microsoft on 2004-10-13).
That's almost whole 3 months. And since then no vendor patch for such a critical bug found in a major product. Not even a warning or anything. That must be the service that any microsoft software user would expect. Wondering if this is a promotion campaign for their new virus and spyware tools.

This bug and some recent others again proved that Microsoft embedded Internet Explorer in such a way that you can't distinguish it from Windows Explorer.

Re:Not working

[Zorilla]

I couldn't get the site to work on my 1936 Stutz Bearcat. I tried attaching an onion to my belt. It was a yellow onion because those were the style at the time...

No luck with Safari, either

[Ohreally_factor]

I just e-mailed Steve Jobs basically the same thing about the Safari Browser. If Apple ever hopes to make it into the enterprise, they're going to have to include at least equivalent functionality for developers to, er, exploit.

Re:It fries Safari

[Alsee]

Ohhh geez, I can just imagine the image:

Blue sky
Bright yellow sun
White fluffy clouds
Cheezy rainbow across the sky, and under the arc of the rainbow:
A FATAL EXCEPTION 0E HAS OCCURRED AT 0157:BF7FF831
Green grass
Smiling happy sunflowers
Pink fluffy bunnies hopping around and singing happy happy songs and dancing with the sunflowers.
PRESS CONTROL+ALT+DELETE TO RESTART YOUR COMPUTER. YOU WILL LOSE ANY UNSAVED INFORMATION IN ALL APPLICATIONS.
HAVE A HAPPY DAY!

-