raptor
Oct 26 2003, 09:40 PM
i just read this:
| CODE |
Microsoft Windows May Allow Installation of Arbitrary ActiveX Controls
Secunia Advisory: SA10010
Release Date: 2003-10-15
Critical: Highly critical
[COLOR=green]Impact: System access[/COLOR]
[COLOR=red]Where: From remote[/COLOR]
[COLOR=blue]OS: Microsoft Windows 2000 Advanced Server
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Professional
Microsoft Windows 2000 Server
Microsoft Windows NT 4.0 Server
Microsoft Windows NT 4.0 Server, Terminal Server Edition
Microsoft Windows NT 4.0 Workstation
Microsoft Windows Server 2003 Datacenter Edition
Microsoft Windows Server 2003 Enterprise Edition
Microsoft Windows Server 2003 Standard Edition
Microsoft Windows Server 2003 Web Edition
Microsoft Windows XP Home Edition
Microsoft Windows XP Professional[/COLOR]
CVE reference: CAN-2003-0660
Description:
Microsoft has issued patches to fix a vulnerability in Microsoft Windows (Internet Explorer) allowing malicious HTML documents like web pages or emails to install arbitrary ActiveX controls.
The problem is that Microsoft Windows fails to present the user with an approval dialog under certain low memory conditions. When this occurs ActiveX controls will be installed silently. [COLOR=red]Malicious HTML documents may be able to cause low memory conditions.[/COLOR]
This vulnerability can't be exploited on Microsoft Windows 2003 if Internet Explorer runs in Enhanced Security Configuration.
Solution:
Microsoft has issued patches:
The patches are available from WindowsUpdate or from:
Microsoft Windows NT Workstation 4.0, Service Pack 6a
http://www.microsoft.com/downloa...-6B81B57C21B6&displaylang=en
Microsoft Windows NT Server 4.0, Service Pack 6a
http://www.microsoft.com/downloa...-BDC59A98BDF2&displaylang=en
Microsoft Windows NT Server 4.0, Terminal Server Edition, Service Pack 6
http://www.microsoft.com/downloa...-1817F2944890&displaylang=en
Microsoft Windows 2000, Service Pack 2
http://www.microsoft.com/downloa...-23183D7EE17D&displaylang=en
Microsoft Windows 2000, Service Pack 3, Service Pack 4
http://www.microsoft.com/downloa...-E98E574338F1&displaylang=en
Microsoft Windows XP Gold, Service Pack 1
http://www.microsoft.com/downloa...-055E93E87847&displaylang=en
Microsoft Windows XP 64-bit Edition
http://www.microsoft.com/downloa...-D76C4B669151&displaylang=en
Microsoft Windows XP 64-bit Edition Version 2003
http://www.microsoft.com/downloa...-5C9FCB905E11&displaylang=en
Microsoft Windows Server 2003
http://www.microsoft.com/downloa...-D58814635E0D&displaylang=en
Microsoft Windows Server 2003 64-bit Edition
http://www.microsoft.com/downloa...-5C9FCB905E11&displaylang=en
Original Advisory:
Vulnerability in Authenticode Verification Could Allow Remote Code Execution
http://www.microsoft.com/technet/security/bulletin/MS03-041.asp
Other References:
http://support.microsoft.com/default.aspx?kbid=823182
|
how can we do this ???
what it means in low memory conditions ?
can we use a loop script maybe or so, to take up all memory ???
