Vulnerability Note VU#984473

Microsoft Internet Explorer contains overflow in processing script action handlers

Overview

A vulnerability in the Microsoft Internet Explorer web browser could allow a remote attacker to crash the browser or possibly execute arbitrary code on a vulnerable system.

I. Description

A programming error in the way that Internet Explorer handles multiple event handlers in an HTML element results in an array out-of-bounds memory access. This error results in a vulnerability that could allow an attacker to execute code on a vulnerable system. An attacker could exploit this vulnerability by constructing a malicious web page and tricking or persuading a user to visit the malicious site.

II. Impact

A remote attacker can cause a vulnerable version of the browser to crash. In some cases, it may also be possible for the attacker to execute code of their choosing on an affected system. The attacker-supplied code would be executed with the permissions of the user running the vulnerable version of the browser.

III. Solution

Apply a patch

Microsoft has published patches for this issue in Microsoft Security Bulletin MS06-013. Users are encouraged to review this bulletin and apply the patches it refers to.

Systems Affected

Vendor	Status	Date Updated
Microsoft Corporation	Unknown	11-Apr-2006

References

http://www.microsoft.com/technet/security/Bulletin/MS06-013.mspx
http://secunia.com/advisories/19269/

Credit

Michal Zalewski publicly reported this vulnerability.

This document was written by Chad R Dougherty.

Other Information

Date Public	03/16/2006
Date First Published	04/11/2006 03:58:55 PM
Date Last Updated	04/11/2006
CERT Advisory
CVE Name	CVE-2006-1245
US-CERT Technical Alerts
Metric	23.01
Document Revision	20

If you have feedback, comments, or additional information about this vulnerability, please send us email.

Produced 2006 by US-CERT, a government organization
Disclaimers and copyright information

Get Adobe Reader