Cyber Daily - Internet Explorer new vulnerability in HTML Objects

Main Menu

Xbox & Playstation

Latest Technologies

Mobile Computing

Security Alerts

Wi-Fi Networking

Softwares Update

Nintendo Wii & DS

Related Items

Home

Security Alerts

Internet Explorer new vulnerability in HTML Objects

Internet Explorer new vulnerability in HTML Objects

PDF

Print

E-mail

Sunday, 13 May 2007

Summary

Internet Explorer 7 provides "improved navigation through tabbed browsing, web search right from the toolbar, advanced printing, easy discovery, reading and subscription to RSS feeds, and much more". Secunia Research has discovered a vulnerability in Internet Explorer, which can be exploited by malicious people to compromise a vulnerable system.

Credit:
The information has been provided by Secunia Research.
The original article can be found at: http://secunia.com/secunia_research/2007-36/

Details :

The vulnerability in Internet Explorer is caused due to an error in the handling of HTML objects as a CMarkup object is used in certain cases after it has been freed. This can be exploited to corrupt memory via a specially crafted web page.

Successful exploitation allows execution of arbitrary code.

Solution:
Apply patches (see the Microsoft security bulletin for details): http://www.microsoft.com/technet/security/Bulletin/MS07-027.mspx

Time Table:
18/01/2007 - Vendor notified.
19/01/2007 - Vendor response.
09/05/2007 - Public disclosure.

CVE Information:
CVE-2007-0947

< Prev		Next >

Latest Cyber News

IT News

Pentagon bans Google map-makers
Intel plans dual-core version of Diamondville
Dell revenue falls short of analyst estimates
EBay settles patent dispute with MercExchange

Wi-Fi Networking

VMWare and Cisco Announce Investment
New Wireless Internet Technology, Protocol For Location Based Services, Developed
Big news from the IEEE: Draft 2.0 of 802.11n moves forward
Book Review: Wireless Networking Visual Quick Tips

Security Alerts

Memory trick breaks PC encryption
Flash drive offers keypad PIN security
Hackers have attacked United Nations official website about killing children by Israel
Government must do more to protect internet users from the threat of e-crime

Small Business

IT Managers program to get Success - Writing green criteria
Software sales risks on eBay
Choosing an Accounting Package
Want E-Com ? Get a Card - Shopping Cart Considerations

Mobile Computing

Nokia aiming to banish paper maps
Mobile goes modular for features
How much would you pay for an unlocked iPhone?
Mobile broadband in a great revolution

Developers

Stay in touch with friends by Shadows ( Japanese researchers )
Google opens doors with Ajax tool kit
Debian delayed as community loses interest
Microsoft reaches massive settlement over software copying

Softwares Update

Video Games

Atari Reports Fiscal 2008 Third Quarter Results
Golden Joystick awards - a competition for top vice Games !
World of Warcraft and Humanity !!
Xbox Live accounts 'not hacked'

Latest Technologies

BBC iPlayer comes to the iPhone
Web desktop targets 'cybernomads'
Devon university Planning to teach baby robot to talk
Sony and Sharp forge TV alliance

Entertainment

Animation

Raketu CEO Parker on John K. collaboration
New Pooh Christmas tale coming to DVD
Pirates go dancing with the stars; At World’s End trailer debuts tonight

Xbox & Playstation

Rainbow Six Vegas 2 Weapons Trailer
FIFA Street 3 ( XBox 360 ) Ronaldinho Video
Star Wars: The Force Unleashed GDC Gameplay
Street Fighter IV Trailer

Nintendo Wii & DS

Super Mario Galaxy playing at E3

Free counter