Info

Disclosure

Nov 26, 2001

Discovery

Unknown

Dates

Exploit

Nov 26, 2001

Solution

Unknown

Description

Microsoft Internet Explorer contains a flaw that allows remote attackers to cause a file to be automatically downloaded and executed on a vulnerable system. The issue is due to IE incorrectly handling the "Content-Type" and "Content-Disposition" HTTP header fields. By modifying these headers, an attacker can create a HTML document that would cause IE to download and execute the files without any security considerations.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public, Exploit Commercial
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Internet Explorer	5.0
		5.5
		6.0

References

CVE ID: 2001-0727 (see also: NVD)
Microsoft Knowledge Base Article: 313675 328548
Bugtraq ID: 3578
CERT VU: 443699
ISS X-Force ID: 7703
CERT: CA-2001-36
Generic Exploit URL: http://jscript.dk/Jumper/xploit/contentspoof.asp
http://www.saintcorporation.com
http://www.saintcorporation.com/cgi-bin/exploit_info/inline_content_filename_ext
Generic Informational URL: http://www.ciac.org/ciac/bulletins/m-027.shtml
http://www.securityfocus.com/archive/1/245512
Microsoft Security Bulletin: MS01-058 MS02-023 MS02-047

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/3033

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Internet Explorer

References

Credit