JScript Can Crash IE 4.0x
Reported August 17, 1998 by Georgi Guninski and NTBugTraq

VERSIONS AFFECTED

  • Microsoft Internet Explorer 4.0, 4.01, 4.01 SP1 on Windows 95 and Windows NT 4.0
  • Microsoft Windows 98

DESCRIPTION

Microsoft Internet Explorer 4.0, 4.01 and 4.01 SP1 use the JScript Scripting Engine version 3.1 to process scripts on a web page. When Internet Explorer encounters a web page that uses JScript script to invoke the Window.External function with a very long string, Internet Explorer could terminate. Long strings do not normally occur in scripts and must be intentionally created by someone with malicious intent. A skilled hacker could use this malicious script message to run arbitrary computer code contained in the long string. In order for users to be affected by this problem, they must visit a web site that was intentionally designed to include a malicious script.

SOLUTION

Load the patched Scripting Engine, available in various language formats, from this URL:
http://www.microsoft.com/msdownload/vbscript/scripting.asp.

Be sure to read Microsoft"s Knowledge Base Article Q191200 on the matter:
http://support.microsoft.com/support/kb/articles/q191/2/00.asp

To learn more about NT Security concerns, subscribe to NTSD

Credits
- Originally reported by Geogio Guninski
- Posted on The NT Shop on August 19, 1998