Reported June 17, 2003, by GreyMagic Security Research.
·Microsoft Internet Explorer (IE) 6.0, 5.5, and 5.01
Two new vulnerabilities in Microsoft IE can result in the execution of arbitrary code on the vulnerable system. These two vulnerabilities consist of the following:
· A cross site scripting vulnerability results from IE not filtering a displayed URL properly and might cause the browser to render HTML passed in the querystring of the URL.
· A script-injection vulnerability results from a flaw in a common function that internal resources use. An attacker can exploit this flaw to execute script commands in the My Computer zone.
For detailed information about these vulnerabilities, see the discoverer’s
The discoverer posted the following demonstrations as proof of concept:
Cross-Site Scripting in Unparsable XML Files
This sample shows the basic URL for injecting content:
Script Injection to Custom HTTP Errors in Local Zone:
Copy and paste the above URL in your browser, then click the red link in order to test it.