Welcome to the TechSpot OpenBoards. Please read the FAQ if you have any questions. Sign up or Login to participate.
|
|||||||
Begin your free trial now
Pay-as-you-go options starting at $10/user/month
Pay-as-you-go options starting at $10/user/month
Flooding Internet Explorer 6
|
|
Thread Tools | Search this Thread |
|
#1
05-18-2003
|
||||
|
||||
|
Flooding Internet Explorer 6
Vulnerability
I've noticed that on my test environment it is possible to bypass Internet Explorer Zones protection by flooding it with large number of file:// requests in example to infected fileserver. The result of this bypass is EXECUTION OF ANY REQUESTED FILE. My requested file was 'trojan.exe' placed on neighbour WIN2K Professional workstation. To see code used during the test check files in attached archive. On IE 6.0 the result was always the same, after more than 200 dialog boxes with 'trojan.exe' request, suddenly requested file got executed. For the purpose of this test I've used 2 Win2K & WinXP workstations with Internet Explorer 6.0.2800.1106 (I believe that's most recent version of IE) & on both workstations opening the 'dmz1.html' file trough LAN share resulted in executing 'trojan.exe' application. My Internet Security Zone was set to "MEDIUM". Would you like to know more? |
|
 |
| Similar Topics | ||||
| Topic | Replies | Forum | ||
 Internet options not working in Internet Explorer.
|
6 | Virus and Malware Removal | ||
|
whenever I connect to he internet and click on the Internet explorer my PC freezes.
|
2 | Virus and Malware Removal | ||
|
Windows Explorer, NOT Internet Explorer, is acting odd and i cant play games
|
1 | Virus and Malware Removal | ||
|
Internet Explorer and Firefox can not connect to Internet
|
5 | Windows OS | ||
| Thread Tools | Search this Thread |
|
|
All times are GMT -4. The time now is 01:31 AM.