Info

Disclosure

Aug 24, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Aug 08, 2006

Description

A remote buffer overflow exists in URLMON.DLL of Microsoft Internet Explorer. The browser fails to check the bounds on long URLs when using the HTTP 1.1 protocol and GZip compression resulting in a heap-based buffer overflow. With a specially crafted request, an attacker can cause execution of arbitrary code resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Disclosure: OSVDB Verified, Vendor Verified

Solution

Upgrade to version 7 or higher, as it has been reported to fix this vulnerability. Additionally, Microsoft has released a patch to address this issue, or users may opt to apply the following workaround: Disable the HTTP 1.1 protocol in Internet Explorer

Products

Microsoft Corporation	Internet Explorer	6
		5

References

Security Tracker: 1016839
Bugtraq ID: 19987
CVE ID: 2006-3873 (see also: NVD)
ISS X-Force ID: 28893
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-09/0191.html
Other Advisory URL: http://research.eeye.com/html/advisories/published/AD20060912.html
News Article: http://weblog.infoworld.com/techwatch/archives/007870.html
Microsoft Security Bulletin: MS06-042

Credit

Derek Soeder - dsoedereeye.com - eEye Digital Security

Direct URL: http://osvdb.org/30834

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Internet Explorer

References

Credit