SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#718542

Microsoft Agent vulnerable to trusted site spoofing

Overview

Microsoft Agent contains a vulnerability that could allow a remote attacker to spoof trusted Internet content.

I. Description

Microsoft Agent is a software extension that enhances user interaction through the use of interactive personalities in the form of animated characters. Applications and web pages can be programmed to invoke Microsoft Agent to make navigation and other tasks easier and more natural for the user.

A flaw in Microsoft Agent allows security prompts to be disguised by a Microsoft Agent character. As a result, users could be led to believe that they are accessing trusted Internet content when, in fact, they are accessing malicious Internet content. The user could subsequently be convinced to unintentionally allow the installation of malicious software. A remote attacker with the ability to craft a malicious web page and persuade or trick a user into visiting it could exploit this vulnerability.

II. Impact

An attacker could spoof trusted Internet content, resulting in the installation of malicious code on the victim system.

III. Solution

Apply a patch


Microsoft has published Microsoft Security Bulletin MS05-032 in response to this issue. Users are encouraged to review the bulletin and apply the patches it refers to.

Workarounds

In addition to the patches referenced above, Microsoft Security Bulletin MS05-032 also contains workaround information to mitigate this issue. Users, particularly those who are unable to apply the patches, should consider implementing these workarounds as appropriate.

Systems Affected

VendorStatusDate NotifiedDate Updated
Microsoft CorporationVulnerable14-Jun-2005

References


http://www.microsoft.com/technet/security/bulletin/MS05-032.mspx
http://www.ciac.org/ciac/bulletins/p-229.shtml
http://secunia.com/advisories/15689/

Credit

Thanks to Microsoft for reporting this vulnerability. Microsoft, in turn, credits Michael Krax with discovering and reporting this issue to them.

This document was written by Chad Dougherty based on information provided by Microsoft.

Other Information

Date Public:2005-06-14
Date First Published:2005-06-14
Date Last Updated:2005-08-02
CERT Advisory: 
CVE-ID(s):CAN-2005-1214
NVD-ID(s):CAN-2005-1214
US-CERT Technical Alerts: 
Metric:9.00
Document Revision:11

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Produced 2005 by US-CERT, a government organization
Disclaimers and copyright information
Get Adobe Reader Get Adobe Reader