Reported October 3, 2003, by Microsoft.

 

 

VERSIONS AFFECTED

 

·         Microsoft Internet Explorer (IE) 6.0 for Windows Server 2003

·         IE 6.0, 5.5, and 5.01

 

DESCRIPTION

 

Two vulnerabilities in Microsoft Internet Explorer (IE) can result in the remote compromise of the vulnerable system. These two new vulnerabilities are as follows:

·         One vulnerability occurs because IE doesn't properly determine an object type returned from a Web server in a pop-up window. This vulnerability can permit an attacker to run arbitrary code on a vulnerable system without any other user action other than visiting a hostile Web page. An attacker can also craft an HTML–based email message to exploit this vulnerability.

·         Another vulnerability stems from IE not properly determining an object type returned from a Web server during XML data binding. This vulnerability lets an attacker run arbitrary code on a vulnerable system without any other user action other than visiting a hostile Web page. An attacker can also craft an HTML–based email message to exploit this vulnerability.

 

 

VENDOR RESPONSE

 

Microsoft has released security bulletin MS03-040, "Cumulative Patch for Internet Explorer (828750)," which addresses these vulnerabilities, and recommends that affected users immediately apply the appropriate patch listed in the bulletin.

 

CREDIT

 

Discovered by Microsoft.