> Hi folks. > > When MSIE 5 users bookmark a page, the browser will request a file > named "favicon.ico" which is to be used in the "Favorites" menu of the > browser. Unfortunately MSIE 5 doesn't check the file integrity and > crash if faced with a bad-formed icon file. > > Upon crashing the stack gets filled with information from the icon > file itself, so it may be possible to run code on the client machine, > tough I didn't test it. Doesn't work for me. NT Server 4.0, SP4, MSIE 5.0 (5.00.2314.1003). Tried repeatedly. > Microsoft was notified twice about this issue via the "Report a Bug" > form on their web site. The first time about one month ago, the second > time about two weeks ago. I didn't receive back any reply. Tried it from a couple of Win95 (OSR/2, no patches) machines with MSIE 5.0, no crash either... if anyone can replicate this I'd be curious to know. How have you gone about testing this? Which platform(s)? Win98 only? > More information about this bug (plus another privacy issue about the > "favicon.ico" file) is available at > http://web.cip.com.br/flaviovs/sec/favicon/index.html. > > -- > Flavio -Kurt Seifried, MCP+I, MCSE https://www.seifried.org/kurt/ Linux Administrators Security Guide https://www.seifried.org/lasg/
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:44:44 PDT