Vulnerability Note VU#916795

Microsoft Internet Explorer (MSIE) Content-Disposition vulnerabilities

Overview

Microsoft Internet Explorer (IE) may handle executable content automatically, opening it with another application on the client host that may, in turn, instruct the operating system to execute the file.

I. Description

IE does not properly verify the Content-Disposition and Content-Type headers of downloaded files. As a result, it may be manipulated to open an executable file with forged Content-Disposition and Content-Type headers, using the helper application associated with the MIME type specified by the forged headers.

II. Impact

Arbitrary code in the malicious file may be executed, with privileges of the client user.

III. Solution

Apply a patch from your vendor

See Microsoft Security Bulletin MS02-023 for more information:

http://www.microsoft.com/technet/security/bulletin/MS02-023.asp

Systems Affected

Vendor	Status	Date Notified	Date Updated
Microsoft Corporation	Vulnerable	4-Jun-2002

References

http://www.microsoft.com/technet/security/bulletin/MS02-023.asp
http://www.securityfocus.com/bid/4752

Credit

Thanks to Microsoft for reporting this vulnerability.

This document was written by Shawn Van Ittersum.

Other Information

Date Public:	2002-05-15
Date First Published:	2002-09-24
Date Last Updated:	2003-09-18
CERT Advisory:
CVE-ID(s):	CAN-2002-0193
NVD-ID(s):	CAN-2002-0193
US-CERT Technical Alerts:
Metric:	12.38
Document Revision:	16

If you have feedback, comments, or additional information about this vulnerability, please send us email.

Get Adobe Reader