Researcher reveals how IE flaw can turn your PC into a public file server

Black Hat conference: Exploit demo of IE flaw prompts Microsoft security notice.

Ellen Messmer (Network World)
05 February, 2010 05:08
Comments

In a live demonstration Wednesday at the Black Hat DC conference, a security consultant showed how it's possible to exploit a flaw in the Microsoft Internet Explorer browser to remotely read files on the victim's local drive, prompting a security advisory from Microsoft.

The flaw, said to extend across all versions of Internet Explorer, is not subject to a patching fix, according to Jorge Luis Alvarez Medina, the Argentina-based security consultant with Core Security Technologies who elaborated on the attack technique during his demo. Indeed, Microsoft advised anyone concerned about the potential for this type of attack to run IE in "protected mode", a workaround that Medina also advised.

Black Hat's most notorious incidents: A quiz

Other workarounds in IE, according to Medina, would include setting "IE Network Protocol Lockdown," adjusting the security level setting for the Internet and Intranet Zones to "high," and disabling Active Scripting for the Internet and Intranet Zones with a custom setting.

But he also noted that since this attack appears to only work against IE, users might want to consider using "a different browser to navigate untrusted Web sites". Medina said it doesn't appear that the IE flaw is subject to patching because it encompasses design features related to how IE and Windows Explorer handle zone elevation, HTML code and MIME types. There are a few ways to instigate the attack, which is somewhat complex because you have to "string all of these features together to build an attack tool," Medina said. One method involves enticing the victim to click a link to a malicious Web site.

One weakness in IE is that it "doesn't behave consistently… when accessing the same resources," he pointed out. The exploit demonstrated by Medina basically involves "chaining the exploitation of a series of weak features." He said the dialog with Microsoft's security team about the exploit so far has indicated that Microsoft thinks this is not something it can fix because the flaw is so much a part of the fundamental design of the browser.

Bookmark this page
Share this article
- facebook
- slashdot
- digg
- Reddit
- stumbleupon
- linkedin
- twitter
Got more on this story? Email Computerworld
Follow Computerworld on twitter

More about: Core Security Technologies, Microsoft, Zones

References show all

Comments

Post new comment

Share
Share this article
- google+
- facebook facebook
- slashdot slashdot
- digg digg
- Reddit Reddit
- stumbleupon stumbleupon
- linkedin linkedin
- twitter twitter
print
email
Bookmark

Related Coverage

Related Whitepapers

Increasing Uptime and Efficiency with Switched PDUs - Two ways to use rack PDUs for more than just distributing power

Power distribution units (PDUs) play an essential role in delivering power safely and at appropriate voltages to servers and other network resources. A particular class of power distribution units known as rack Switched PDUs, however, is capable of performing additional functions that can help data center managers improve the efficiency and reliability of their IT infrastructure. This paper provides a brief introduction to rack Switched PDUs and describes two underappreciated yet powerful ways to take advantage of their advanced functionality.

Featured Download

aMSN Messenger

Zones

Most Popular Whitepapers

Three simple steps to better patch security

It’s estimated that 90% of successful attacks against software vulnerabilities could be prevented with an existing patch or configuration setting. Yet patching is a persistent challenge for IT managers. With the glut of patches released each year, how do you know which ones are truly critical security patches and which ones aren’t? And how can you identify which computers are actually missing the patches they need? This paper details a simple approach to patching that gives you better visibility into and control over patch assessment and compliance.

Popular tags: Business Management, Security, Storage, Data Centre, Master Data Management

Latest Jobs

Market Place

Researcher reveals how IE flaw can turn your PC into a public file server

Comments

Post new comment

Active Directory comes to Linux with Samba 4

iPhone 5 rumour rollup for the week ending February 10

Which tablet should I buy? iPad 2 vs Sony Tablet S

Customer service still dogs Telstra

Start-up spotlight: Smart Sparrow targets next-generation learning

Four crazy tech ideas from Google's Solve for X project

SA minister urges change to Facebook ban

Microsoft at a loss over Event Viewer scam

Exetel's John Linton passes away

TPG faces customer backlash over slowed net speeds

NBN Co wholesale pricing too high: Telstra

Increasing Uptime and Efficiency with Switched PDUs - Two ways to use rack PDUs for more than just distributing power

Look both ways - Protecting your data with content inspection

Case Study - TNT Express successfully reduces their paper usage and costs using a new document solution

Datacenter Efficiency with Oracle x86 Blade System Solutions

aMSN Messenger

Application Lifecycle Management

HP Converged Storage Zone

EMC Next Generation Backup – Backup & Recovery Solutions

HP Business Efficiency - Money Payback Guarantee Resource Centre

The Australian Cloud

Three simple steps to better patch security

Top Ten Considerations when Deploying IT Operations Management in the Cloud

Enabling Agile and Intelligent Businesses

Managed Services Strategy Guide

Disaster Recovery Strategy Guide

Computerworld newsletter

Don't have an account?

Researcher reveals how IE flaw can turn your PC into a public file server

Comments

Post new comment

Computerworld newsletter