New IE flaw enables remote PC attacks

About InfoWorld : Advertise : Subscribe : Contact Us : Awards : Events : Store

NEWS

New IE flaw enables remote PC attacks

By David Legard
June 5, 2002 7:06 am PT

ANOTHER SECURITY FLAW identified in Microsoft's IE 5.5 and 6.0 Web browsers has the potential to give a remote user access to a host computer, according to security company Online Solutions.

ADVERTISEMENT

<a href="http://ad.doubleclick.net/jump/idg.us.info.news/article;abr=!ie;pos=imu;pkey=security;skey=;paud=;saud=;sz=336x280;tile=2;ord=501203141008?"> <img src="http://ad.doubleclick.net/ad/idg.us.info.news/article;abr=!ie;pos=imu;pkey=security;skey=;paud=;saud=;sz=336x280;tile=2;ord=501203141008?" border="0"> </a>

Free IT resource

Virtualization Insights from Top Experts - Learn how virtualization gets real!

TOP NEWS

IT SOLUTION SEARCH

The attack exploits IE's built-in gopher client. Gopher is a nearly obsolete protocol for accessing remote directories and files which has been largely superseded by the Web and Hypertext Transfer Protocol (HTTP).

The part of code in IE which parses gopher replies contains an exploitable buffer overflow bug. A malicious server may be used to run arbitrary code on an IE user's system, Online Solutions said in a security advisory issued Tuesday.

The attack can be launched via a Web page or an HTML mail message which redirects the user to a malicious gopher server when the user views them. The exploiter could do anything that a regular user could do on the system -- retrieve, install, or remove files, upload and run programs.

IE users can protect themselves from the flaw by disabling the gopher protocol and since very few gopher servers still exist on the Internet today, this is unlikely to cause operational problems, the company said.

Jyv�skyl�, Finland-based Online Solutions said it informed Microsoft of the vulnerability on May 20 and that Microsoft has indicated it is working on a patch.

Until a patch is released, Online Solutions suggest that users follow a simple way to disable processing and displaying gopher pages by defining a non-functional gopher proxy in Internet Options.

Users should; select Tools -> Internet options -> Connections; click on "LAN settings"; check "Use a proxy server for your LAN"; click on "Advanced..."; in this area where users can define proxy servers to be used with different protocols, go to the Gopher text field and enter "localhost", and "1" in the port text field.

This will stop Internet Explorer from fetching any gopher documents, the company said.

David Legard is a Singapore correspondent for the IDG News Service, an InfoWorld affiliate.

SPONSORED WHITE PAPERS

EMC - Lower costs and improve reliability-Get the EMC CLARiiON white paper!
Ciphertrust - Are you ready for Sobig.G? Learn how to protect your email systems.
CDW - Personal attention. CDW. The Right Technology. Right Away.
EMC - Explore key performance features and capabilities of EMC ControlCenter 5.1.1.
Intel - Free Intel white paper shows you how to deploy a secure wireless LAN
Cisco - FREE WHITE PAPER: BLUEPRINT to design and implement secure VPNs
Verity, Inc. - "Mass Consolidation Hits the Web-Search Market"
McDATA - Download a FREE storage consolidation white paper from McDATA(R).
Lucent Technologies - Overcoming Common Firewall Limitations
Lucent Technologies - Leverage Your Mobile High Speed Data Access. Download Free White Paper!
Nokia - Get the scoop! Mobilizing business white papers & case studies.
BMC Software - Maximize the Potential of Enterprise Data: Free white paper!
Network Associates - Free white paper - Strategies for Optimizing Network Costs and Benefits
Entrust - Manage identities across applications. Improve productivity.
Stalker Software - CommuniGate Pro - Transform your Email and Calendaring
Remedy - A NEW Gartner Research Note:Producing Quality IT Services

Search the IDG White Paper Library:

SPONSORED LINKS

INFOWORLD MARKETPLACE

» IT Compliance Conference: Nov. 5-7 in San Diego
Best Practices, Peer Experiences, & Expert Advice for Building a Defensible IT Compliance Program
» FREE Sophos Threat Detection Test
Is your AV catching everything it should? Free virus, spyware and adware scan.
» IT Audit Checklists
Prepare for your next internal IT audit. Checklists cover security, risk management, PCI, and more.
» FREE White Paper: Mitigating Rock Phish Attacks
Standard anti-phishing methods cannot defeat complex Rock Phish attacks. Learn how to fight back...
» Apply BPM and ITIL at your IT Help Desk
ServiceWise brings BPM to complete IT service while eliminating integration cost. Learn more here.

>> BUY A LINK NOW

	HOME NEWS TEST CENTER OPINIONS PRODUCT GUIDE TECHINDEX	About : Advertise : Subscribe : Contact Us : Awards : Events
Copyright © 2008, Reprints, Permissions, Licensing, IDG Network, Privacy Policy

All Rights reserved. InfoWorld is a leading publisher of technology information and product reviews on topics including viruses, phishing, worms, firewalls, security, servers, storage, networking, wireless, databases, and web services.

Computerworld :: Network World :: CIO :: PC World :: Darwin :: CMO :: CSO
IT Careers :: JavaWorld :: Macworld :: Mac Central :: Playlist :: GamePro :: GameStar :: Gamerhelp
ITWorld Canada :: Computerwoche :: Techworld UK :: tecChannel :: IDG.se :: IDG.no