ISS X-Force Database: ie-frame-restrictions-bypass(12019): Microsoft Internet Explorer FRAME or IFRAME bypass restrictions

Microsoft Internet Explorer FRAME or IFRAME bypass restrictions

ie-frame-restrictions-bypass (12019)

High Risk

Description:

Microsoft Internet Explorer could allow a remote attacker to execute arbitrary code on a vulnerable system. By creating an HTML document containing a large number of FRAME or IFRAME elements that specify an executable file as its source, a remote attacker could bypass security restrictions and execute arbitrary code on the system or cause the system to crash. An attacker could exploit this vulnerability by creating a malicious Web page and hosting it on a Web site or by sending it to a potential victim as an HTML email.

Consequences:

Gain Access

Remedy:

Apply the appropriate patch for your system, as listed in the latest Microsoft Security Bulletin. See References.

— OR —

Use Microsoft Automatic Update if it is supported by your operating system. The original bulletin issued by Microsoft has been superseded.

References:

BugTraq Mailing List, Thu May 08 2003 - 04:05:38 CDT : Flooding Internet Explorer 6.0.2800 (6.x?) security zones ! [CRITICAL].
BugTraq Mailing List, Tue May 13 2003 - 02:02:52 CDT: Flooding Internet Explorer 6.0.2800 (6.x?) security zones ! - UPDATED.
CIAC Information Bulletin N-101: Microsoft Cumulative Patch for Internet Explorer (IE).
Microsoft Security Bulletin MS03-020: Cumulative Patch for Internet Explorer (818529).
Microsoft Security Bulletin MS03-032: Cumulative Patch for Internet Explorer (822925).
Microsoft Security Bulletin MS03-040: Cumulative Patch for Internet Explorer (828750).
Microsoft Security Bulletin MS03-048: Cumulative Security Update for Internet Explorer (824145).
Microsoft Security Bulletin MS04-004: Cumulative Security Update for Internet Explorer (832894).
Microsoft Security Bulletin MS04-025: Cumulative Security Update for Internet Explorer (867801).
Microsoft Security Bulletin MS04-038: Cumulative Security Update for Internet Explorer (834707).
Microsoft Security Bulletin MS04-040: Cumulative Security Update for Internet Explorer (889293).
Microsoft Security Bulletin MS05-014: Cumulative Security Update for Internet Explorer (867282).
Microsoft Security Bulletin MS05-020: Cumulative Security Update for Internet Explorer (890923).
Microsoft Security Bulletin MS05-025: Cumulative Security Update for Internet Explorer (883939).
Microsoft Security Bulletin MS05-038: Cumulative Security Update for Internet Explorer (896727).
Microsoft Security Bulletin MS05-052: Cumulative Security Update for Internet Explorer (896688).
Microsoft Security Bulletin MS05-054: Cumulative Security Update for Internet Explorer (905915).
Microsoft Security Bulletin MS06-004: Cumulative Security Update for Internet Explorer (910620).
Microsoft Security Bulletin MS06-013: Cumulative Security Update for Internet Explorer (912812).
Microsoft Security Bulletin MS06-021: Cumulative Security Update for Internet Explorer (916281).
Microsoft Security Bulletin MS06-042: Cumulative Security Update for Internet Explorer (918899).
Microsoft Security Bulletin MS06-067: Cumulative Security Update for Internet Explorer (922760).
Microsoft Security Bulletin MS06-072: Cumulative Security Update for Internet Explorer (925454).
Microsoft Security Bulletin MS07-016: Cumulative Security Update for Internet Explorer (928090).
Microsoft Security Bulletin MS07-027: Cumulative Security Update for Internet Explorer (931768).
Microsoft Security Bulletin MS07-033: Cumulative Security Update for Internet Explorer (933566).
Microsoft Security Bulletin MS07-045: Cumulative Security Update for Internet Explorer (937143).
Microsoft Security Bulletin MS07-057: Cumulative Security Update for Internet Explorer (939653).
Microsoft Security Bulletin MS07-069: Cumulative Security Update for Internet Explorer (942615).
Microsoft Security Bulletin MS08-010: Cumulative Security Update for Internet Explorer (944533).
Microsoft Security Bulletin MS08-024: Cumulative Security Update for Internet Explorer (947864).
Microsoft Security Bulletin MS08-031: Cumulative Security Update for Internet Explorer (950759).
Microsoft Security Bulletin MS08-045: Cumulative Security Update for Internet Explorer (953838).
Microsoft Security Bulletin MS08-058: Cumulative Security Update for Internet Explorer (956390).
BID-7539: Internet Explorer file:// Request Zone Bypass Vulnerability
CVE-2003-0309: Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to bypass security zone restrictions and execute arbitrary programs via a web document with a large number of duplicate file:// or other requests that point to the program and open multiple file download dialogs, which eventually cause Internet Explorer to execute the program, as demonstrated using a large number of FRAME or IFRAME tags, aka the File Download Dialog Vulnerability.
SA8807: Internet Explorer Automatic File Download and Execution Vulnerability
US-CERT VU#251788: Microsoft Internet Explorer does not safely handle multiple file download requests

Platforms Affected:

Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0

Reported:

May 08, 2003

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page