RE: Pressing CTRL in IE is dangerous - Sandblad advisory #8

From: GreyMagic Software (securityat_private)
Date: Wed Jul 24 2002 - 07:54:35 PDT

Next message: office: "cross-site scripting bug of Mailman"

Previous message: David Frascone: "Re: VNC authentication weakness"
In reply to: Andreas Sandblad: "Pressing CTRL in IE is dangerous - Sandblad advisory #8"
Next in thread: Peter Pentchev: "Re: Pressing CTRL in IE is dangerous - Sandblad advisory #8"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Microsoft and Andreas suggest the following workarounds:

>2. disable "allow paste operations via script" (best)
>3. disable active scripting

Using these workarounds is currently futile for users with Office installed.
The clipboard text can be set regardless of configuration as we've shown in
GM#007-IE, and disabling scripting can be easily circumvented as we've shown
in GM#005-IE.

These vulnerabilities have been disclosed 3.5 months ago and still haven't
been patched.

References:
http://sec.greymagic.com/adv/gm005-ie/
http://sec.greymagic.com/adv/gm007-ie/

But even without these workarounds the severity of this vulnerability is
low-medium at best since it requires a non-trivial user interaction.

- GMS

Next message: office: "cross-site scripting bug of Mailman"
Previous message: David Frascone: "Re: VNC authentication weakness"
In reply to: Andreas Sandblad: "Pressing CTRL in IE is dangerous - Sandblad advisory #8"
Next in thread: Peter Pentchev: "Re: Pressing CTRL in IE is dangerous - Sandblad advisory #8"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Jul 24 2002 - 11:39:18 PDT