Please wait while the page is being loaded Skip this advertisement >
Monday | 8 September, 2008
ARN
After 'treasure hunt,' hacker releases IE attack code
A security researcher has disclosed an unpatched flaw in Internet Explorer's "Print Table of Links" feature
Robert McMillan (IDG News Service) 16 May, 2008 08:31:48

Related Stories
  • +

    After attacks, Apple fixes QuickTime bug 14 December, 2007 12:19:30

    Apple has patched a critical security flaw in QuickTime that was being exploited by attackers.
    Apple has released a new security patch for QuickTime, its eighth update this year for the media player software.
ARN Directory | Distributors relevant to this article
Also Technology , Altech Computers , ASI Solutions , Cellnet , Compucon Computers , Computergate , EDsys Computers , Express Data , Express Online , Impact Systems Technology , Infortech Distribution , Ingram Micro Australia , LDS International , Leader Computers , Leading Pacific Australia , Simms International , Synnex Australia , Topstar Computer International , Unixpac , Westan , XiT Distribution , Xpress I.T.
Additional Resources
ARN Library
white paper Click here for case studies, whitepapers and other useful vendor content

Newsletter Subscription

Sign up for our ARN newsletters!
The premier provider of daily news to the IT channel, covering business, technology, products, and services.
RSS Feeds

One week after hiding Internet Explorer attack code on his Web site, security researcher Aviv Raff has posted details on how to launch the attack.

The bug lies in the "Print Table of Links" feature, which lets IE users print out a Web page along with a list of all the links on the page tacked onto the end. Raff discovered that if an attacker added special scripting code to a Web page, he could then run unauthorized software on the PCs of IE users who printed using this feature.

The flaw affects IE 7 and IE 8, Raff said. Security vendor Secunia said that the bug also affects IE 6.

Because the hack requires that the user be tricked into following so many steps -- not only visiting a Web page, but then printing a page with this feature selected -- Secunia has rated it as a "less critical."

Raff said that the flaw could be a more serious issue if hackers were to add the code to Web pages that were frequently printed out, such as those on Wikipedia.

The bug has not been patched by Microsoft, which was notified of the issue just last week.

Raff disclosed the flaw in an unusual way, embedding it in his own Web site and then inviting other hackers to come and find it. He called this a "treasure hunt."

The Israeli hacker said that the treasure hunt idea came from a local custom of playing such games during Israel's Independence Day. The contest was won Tuesday by someone calling himself "George the Greek."

Microsoft didn't get much time to fix the vulnerability, but Raff said he didn't feel that Microsoft would address the issue quickly unless he went public with the vulnerability.

When he has followed Microsoft's responsible disclosure guidelines in the past, the company has been too slow to fix bugs, he said.

Microsoft is thinking about putting a fix for the problem in an upcoming security update, the company said in a statement. It too downplayed the risk. "Our investigation has shown an attack would require significant user interaction," the company said. " An attacker would need to convince a user to select a non-default printing option and print a malicious web page in order for an attack to be successful."

Though Raff's attack code has been posted to the Millworm Web site, Microsoft says it's not heard of any attacks that exploit this vulnerability.

ARN Directory | Distributors relevant to this article
Also Technology , Altech Computers , ASI Solutions , Cellnet , Compucon Computers , Computergate , EDsys Computers , Express Data , Express Online , Impact Systems Technology , Infortech Distribution , Ingram Micro Australia , LDS International , Leader Computers , Leading Pacific Australia , Simms International , Synnex Australia , Topstar Computer International , Unixpac , Westan , XiT Distribution , Xpress I.T.
Market Place
Download this report and sell disaster recovery more effectively.
Whatever your application, Eaton is your one-stop partner for your power protection needs.
Whatever your application, Eaton is your one-stop partner for your power protection needs.
Worry-Free™ Business Security Advanced - Safer, smarter and simpler security.
Find out how to win an IPod Touch with ARN.

ARN Member Login

 
Panel Sessions

  • ARN Panel Sessions: Day 3

    The last of our panel sessions recorded live at CeBIT 2008. Today, the topic is storage. Data is growing at an enormous rate, so what does the future hold?

Play
See all Panel Sessions videos >>
ARN news
Play
See all news >>
Channel Watch

  • Brian's bloopers

    It takes a long time to produce an episode of Channel Watch. Maybe you'll understand why after watching this...

Play
See all Channel Watch videos >>
Business Continuity & Disaster Recovery Zone

When an IT disaster occurs, how handy it would be to push a button and start again as if nothing had happened.
Discover and learn more about CA XOSoft today.
ARN Vendor Directory
 
Find vendors by name | Find by category
ARN Library
Download the Freeform research report on high availability and disaster recovery and sell more effectively in this space

Read Material

Download the Freeform research report on high availability and disaster recovery and sell more effectively in this space

A new research report from Freeform Dynamics, 'Risk and Resilience' reveals customer pain points as a result of application downtime. The reality is that today's global businesses cannot tolerate downtime for essential applications yet many do not have an effective solution in place. This creates an opportunity for high availability and disaster recovery solutions. To understand more about this opportunity download your free copy today.

Sponsored Links