Wednesday, October 15, 2008

Internet Explorer 6 componentFromPoint() remote memory disclosure and remote code execution

There is a bug in Internet Explorer 6 JavaScript implementation enabling remote memory disclosure and remote code execution. The vulnerability is caused by improper implementation of componentFromPoint() method of xml object.

The vulnerability

The vulnerability is triggered by errornous behavior of componentFromPoint() method when invoked on a newly created xml object.

Impact

This vulnerability can be used (trivially) to remotely disclose Internet Explorer's memory when a victim visits a specially crafted web page or (less trivially) to achieve remote code execution when a victim visits a specially crafted web page.

PoC

Due to the spread and the impact of the vulnerability, exploiting details will be released at a later date, once everyone has had plenty of time to patch.

References

http://www.zerodayinitiative.com/advisories/ZDI-08-069/
http://www.microsoft.com/technet/security/bulletin/MS08-058.mspx
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3475
at

9 comments:

  1. AnonymousOctober 15, 2008 at 2:40 AM

    Izvrstan posao Ivan :)

    ReplyDelete
  2. aliyaaOctober 19, 2016 at 6:39 AM

    I appreciated your effort and bookmarked your site write company profile

    ReplyDelete
  3. JohnSeptember 4, 2020 at 3:13 PM

    اعالى الخليج تقدم افضل خدمات نقل العفش الدولى المتميزه باسعار متميزة ومنها :

    شركة شحن عفش من الرياض الى الامارات
    نقل عفش من الرياض الى الاردن شركة شحن عفش من الرياض الى الاردن 11
    22
    33
    44
    55
    66

    ReplyDelete
  4. NathanPassSeptember 15, 2022 at 12:21 PM

    Hello! Our who or whom checker online is the best assistant in finding pronouns and correcting other errors in the text. You don't have to worry about forgetting the rules and making mistakes, just check your suggestions with our tool. Our assistant is trusted by thousands of people from all over the world, try it yourself!

    ReplyDelete
  5. passvtctveSeptember 16, 2022 at 2:28 PM

    Hello everyone! In today's fast-paced world, we must cope with various tasks as efficiently and quickly as possible and at the same time with high quality. Our text correction and proofreading tool can help you create perfect texts because it works online and for free and does its job perfectly. passive to active voice converter free

    ReplyDelete
  6. AnonymousSeptember 18, 2022 at 8:55 AM

    Hello everyone! I always confused and did not understand what signs should be placed in the text, and it was hard for me to deal with this topic in lessons and pairs! But this site came to my aid, where I learned to distinguish and understand why this or that sign, if you have such a problem, come and try with your friends! And the sentence changers program will always help you!

    ReplyDelete
  7. Micheal JacksonDecember 30, 2022 at 7:54 AM

    I always confused and did not understand gas station nearby
    what signs should be placed in the text, and it was hard for me to deal with this topic in lessons and pairs! But this site came to my aid

    ReplyDelete
  8. PriyaMay 1, 2024 at 9:20 PM

    wonderful blog.It's very interesting to read...

    C Programming course at Edukators in Coimbatore

    ReplyDelete
  9. olivia jonesJanuary 13, 2025 at 10:59 PM

    Understanding how the Internet Explorer 6 component FromPoint could lead to remote memory disclosure and remote code execution is definitely a challenging and complex topic. I had to seek help from the US assignment Service to get a clearer understanding. Their guidance really helped break down the technicalities and explain how such vulnerabilities are exploited. It’s a tough subject, but their support made it manageable!






    ReplyDelete