Info

Disclosure

Feb 13, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Microsoft Internet Explorer contains a flaw in its handling of certain drag-and-drop events. The issue is triggered when a malicious web site is able to predict and exploit the timing of a drag-and-drop operation. It is possible that the flaw may allow a malicious user to install arbitrary files in sensitive locations that may enable further system compromise, resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation, Race Condition
Impact: Loss of Integrity
Exploit: Exploit Rumored
Disclosure: Vendor Verified

Solution

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround(s): 1) Set a Kill Bit on the Shell.Explorer Control 2) Prevent Automatic Navigation to Local Intranet Zone (Windows XP SP2, Windows Server 2003 SP1) 3) Disable Active Scripting

Products

Microsoft Corporation	Internet Explorer	5.01
		5.5
		6.0

References

Security Tracker: 1015049
Bugtraq ID: 16352
Secunia Advisory ID: 18787
CVE ID: 2005-3240 (see also: NVD)
SCIP VulDB ID: 2048
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-02/0272.html
Vendor Specific News/Changelog Entry: http://blogs.technet.com/msrc/archive/2006/02/13/419439.aspx
News Article: http://news.yahoo.com/s/pcworld/20060214/tc_pcworld/124705
http://www.networkworld.com/news/2006/021306-drag-flaw-microsoft-explorer.html
http://www.pcmag.com/article2/0,1895,1926134,00.asp
Other Advisory URL: http://www.securiteam.com/windowsntfocus/5MP0B0UHPA.html

Credit

Matthew Murphy - mattmurphykc.rr.com -

Direct URL: http://osvdb.org/2707

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Internet Explorer

References

Credit