Slashdot Mirror

← Back to Stories (view on slashdot.org)

Unpatched IE Flaw Extremely Critical

Posted by Zonk on from the get-the-lead-out dept.

Durinthal writes "The biggest blip on the security radar over the Thanksgiving holiday was the realization by the security community that an Internet Explorer problem first identified six months ago was a lot worse than it appeared, as what appeared to be only a DoS vulnerability also allows for execution of arbitrary code. The realization caused Secunia to issue a rare 'Extremely Critical' advisory."

30 of 277 comments (clear)

  1. Extremely Dupical by A+beautiful+mind · · Score: 5, Funny

    The biggest blip on the slashdot radar over the Thanksgiving holiday was the realization by the editorial community that a slow news problem first identified six months ago was a lot worse than it appeared, as what appeared to be only a short blip of news vulnerability now also allows for execution of arbitrary stories as portraid by Beatles Beatles. The realization caused CmdrTaco to issue a rare 'Extremely Dupical' advisory.

    --
    It takes a man to suffer ignorance and smile
    Be yourself no matter what they say
    1. Re:Extremely Dupical by Anonymous Coward · · Score: 3, Informative

      OK, now I know Slashdot's biased, but posting this twice and not posting this at all?

      All your OS are belong to Sun!

  2. Scummy eweek popup alert by david.given · · Score: 5, Insightful
    ...pops up a dialogue asking whether you want to be spammed and then spams you anyway when you hit CANCEL.

    Does anyone think that a very handy Firefox add-on would be a button attached to this kind of dialogue that would instantly kill all Javascript scripts stone dead for the page? Once an OK/Cancel dialogue is up, you can't interact with Firefox's UI until you've responded to the dialogue and let the Javascript do something, which I think is poor design.

    1. Re:Scummy eweek popup alert by BattleRat · · Score: 5, Informative

      The extention you are looking for is called NoScript. It works awesome.

    2. Re:Scummy eweek popup alert by HoosierPeschke · · Score: 3, Informative

      Try this NoScript. It's a whitelist so you can allow only certain sites to use javascript.

      --
      Mr. Universe: "They can't stop the signal, Mal. They can never stop the signal."
  3. is IE the sound that .... by Anonymous Coward · · Score: 5, Funny

    is "IE" the shortented version of the screaming sound that I make when I realize my machine has been compromized?
    "iiiieeeeEEEEEEEEE!"

    1. Re:is IE the sound that .... by BushCheney08 · · Score: 3, Funny

      Is that like the Windows user's equivalent of KHAAAAAAANNNNNN?

      --
      Be a real patriot: Question authority. Think for yourself. Formulate your own conclusions.
    2. Re:is IE the sound that .... by Foofoobar · · Score: 5, Funny

      I thought they just threw chairs? No wait... that's management.

      --
      This is my sig. There are many like it but this one is mine.
  4. Firefox v1.5 by Space_Soldier · · Score: 5, Interesting

    This makes Slashdot exactly on the day Firefox v1.5 is supposed to be released. Apparently, Mozilla want to create a huge marketing campaign, better and larger than the one for v1.0. This is a perfect time to capitalize on this horrible security hole to promote Firefox.

    1. Re:Firefox v1.5 by m0i · · Score: 3, Informative

      This makes Slashdot exactly on the day Firefox v1.5 is supposed to be released. Apparently, Mozilla want to create a huge marketing campaign, better and larger than the one for v1.0. This is a perfect time to capitalize on this horrible security hole to promote Firefox.

      Hrm, did you notice that Firefox 1.5 is crashing as well on this exploit? It's not a security risk but a big annoyance nonetheless.

      --
      have you been defaced today?
  5. Proof of Concept by Motherfucking+Shit · · Score: 5, Informative

    Here is a link to the Proof of Concept page, which will launch an instance of calc.exe if you're vulnerable. AVG Free caught the exploit in the cached page, but calc.exe ran anyway, even after I deleted the file.

    --
    "BSD: Free as in speech. Linux: Free as in beer. Windows 10: Free as in herpes." --Man On Pink Corner in #52607549.
    1. Re:Proof of Concept by Anonymous Coward · · Score: 4, Funny

      I'm really sick of my mac, nothing works right on here. Why wont it bring up my calculator!

    2. Re:Proof of Concept by Pxtl · · Score: 3, Informative

      Hm. I get a "Script Prompt" window over a tiny IE window, with the name of your site in a textbox. A few seconds later (or when I touch it) it snaps and then I get the windows "close-details" app crash window.

      So it disturbs the browser, but it doesn't hack it for me.

    3. Re:Proof of Concept by Spy+der+Mann · · Score: 3, Interesting

      I suppose that's because a buffer overflow makes IE6 execute code directly. The scanner (in my case, VShield) noticed there's an exploit in the webpage, but there's nothing else it could do. It's like some security guards saying "hey, a thief opened this door!" and they close the door, but don't catch the thief.

      Yes, this is a very dangerous problem.

    4. Re:Proof of Concept by TheSpoom · · Score: 4, Informative

      Slightly offtopic, but if you're wondering, NAV calls anything it considers suspicious enough to stop but doesn't have a name for yet "Bloodhound" because that's the component that detects buffer overflows and the like. Just something rather interesting I found when I was doing tech support.

      --
      It's better to vote for what you want and not get it than to vote for what you don't want and get it.
      - E. Debs
    5. Re:Proof of Concept by PlusFiveTroll · · Score: 3, Informative

      Firefox didnt crash, if you waited long enough (like I did) it opens up a popup dialog full of ??????'s, you can then close the window. But it did take a full 3 minutes on a Athlon64 300+ with a gig of ram. calc.exe does not run.

  6. Temp Fix by Manip · · Score: 4, Informative

    Turn on "Data Execution Protection" for all programs and services. Instead of allowing full execution it will limit it to a DOS (crack IE).

    Control Panel -> System -> Advanced [Tab] -> Performance Settings -> Data Execution Protection [Tab] -> Turn on DEP for all programs and services except those I select -> Ok -> OK.

    1. Re:Temp Fix by _Shorty-dammit · · Score: 3, Informative

      I believe DEP is on by default for IE anyways, so I'm not sure this is even necessary. I just tried the proof-of-concept test on my machine, and all it did was bring up some script prompt, didn't launch calc.exe as it should have. This is with the IE7 beta, btw.

  7. It affects Firefox, too. by Mitchell+Mebane · · Score: 5, Informative

    Although it's not as severe.

    https://bugzilla.mozilla.org/show_bug.cgi?id=31733 4

    --

    The roots of education are bitter, but the fruit is sweet.
    --Aristotle
  8. ISC got counter of vulnerable systems by UnderAttack · · Score: 4, Interesting

    The SANS Internet Storm Center has a counter on their home page showing how many visitors to their site are vulnerable to this particular problem. At this time, looks like it is 43%! (and I assume that people checking the site are more security concious then the average). Also see MSIE 0day exploit.

    --
    ---- join dshield.org Distributed Intrusion Detec
  9. McAfee Fails It by Orrin+Bloquy · · Score: 5, Informative

    On my W2K box, McAfee warns me of a threat, then as soon as I close the window, the code executes anyway.

    --
    "Made up/misattributed quote that makes me look smart. I am on /. and I must look smart."
  10. Am I the only one? by LaughingCoder · · Score: 3, Insightful

    I read the article, and there was a link to a page that demonstrates the exploit. Now, am I the only one who is afraid to click such a link? There is something about seeing a link that basically says "click here to see how we can take over your machine" that sends chills down my spine. I don't know about you, but I never click those demonstration links on *MY* machine.

    --
    The more you regulate a company, the worse its products become.
  11. Worthless eWeek by TubeSteak · · Score: 3, Interesting

    They just copied half the story from this site:

    http://www.security.ithub.com

    The Proof of Concept didn't load calc.exe for me. Instead, it crashed my IE windows on WindowsXP SP1.

    I run Ad Muncher, so that might have caught and foiled the malicious javascript.

    --
    [Fuck Beta]
    o0t!
  12. Re:You mean to say I can be up to date by Enigma_Man · · Score: 3, Insightful

    Sarcasm aside, yes they should be responsible for what they wrote, even though it's a lot of code, and there are going to be bugs (human nature). It is shoddy software.

    -Jesse

    --
    Nothing says "unprofessional job" like wrinkles in your duct tape.
  13. Snow Crash by alienmole · · Score: 3, Funny

    Funny how so many of the responses in this thread mirror the response of someone who's just been exposed to Snow Crash: "weird - the screen just went all static-y. But I'm fine... aren't I???"

  14. Simmer down by TubeSteak · · Score: 3, Informative

    The URL is http://www.ocremix.org/
    And here's the submitter's user page http://slashdot.org/~Durinthal

    I think you mistook the submitter for **Beatles-Beatles
    This Beatles guy is really getting out of hand.
    He manages to taint stories he isn't even submitting. ...or maybe /.'ers need to stop being so effing hyper sensitive about certain things.

    --
    [Fuck Beta]
    o0t!
  15. Re:You mean to say I can be up to date by Phisbut · · Score: 3, Insightful
    I am shocked and appalled. As is well known, any reputable software vendor would release flaw free code that could not possibly cause hidden attacks such as this.

    Although it can be "accepted" that code be released with unknown bugs (because we all make mistakes), the problem here is that the bug report is over 5 months old. It is one thing to ship buggy code, it is another thing to ignore bug reports and not fix your product once the bugs have been found. It is no longer unknown, Secunia has a release date of 2005-05-31 for that bug.

    --
    After 3 days without programming, life becomes meaningless
    - The Tao of Programming
  16. Excerpt from email my credit union sent by smchris · · Score: 4, Interesting


    "Currently, the only work-around is to temporarily discontinue the use of Microsoft Internet Explorer and use another browser, such as FireFox, (this can be downloaded for free at www.mozilla.com) until Microsoft can issue a patch."

    Anyone else's bank send out a warning like this bluntly stating that if you use IE, there is nothing the bank can do to protect you?

    1. Re:Excerpt from email my credit union sent by Cro+Magnon · · Score: 4, Funny
      Anyone else's bank send out a warning like this bluntly stating that if you use IE, there is nothing the bank can do to protect you?


      No, but I got an email from my bank stating that there is a problem with my account and they need my account info.

      --
      Slow down, cowboy! It has been 4 hours since you last posted. You must wait another few hours.
  17. Patch here by 6Yankee · · Score: 4, Funny

    Rename calc.exe. Job done!