Site menu:

Welcome | Products & Services | Security Portal | Commentary | Employment | FAQ | Privacy |

Innovation in Information Security

Coverage of important Information Security and Information Technology news and events from the research team at S?nnet Beskerming.

Username: | Password: Contact us to request an account

Internet Explorer, Help files, and VBScript - Remote Code Execution Allowed

Microsoft have recently identified an odd vulnerability that utilises VBScript via Internet Explorer to run arbitrary code, all through seemingly-innocuous help files.

From Microsoft's Advisory, any successful exploit requires user interaction, getting the user to press the F1 key after being prompted by a dialog box, nominally bringing up the help function. A weakness in the interaction of VBScript and Windows Help files when using Internet Explorer is the root cause of the vulnerability.

Vulnerable systems include Windows 2000, XP, and 2003 and with the vulnerability having been disclosed publicly before Microsoft were made aware of it, there is a higher risk of successful exploitation than with Microsoft's normal vulnerability disclosure and patching methods. At this stage, there are not any reported attacks making use of this vulnerability.

Mitigating the risk of compromise is the requirement for user interaction, with successful attack only gaining the rights of the current user.

Microsoft's suggested workarounds include not pressing the F1 key when prompted by a website, restricting access to the Windows Help System (effectively disabling it system-wide), and changing the security and scripting settings within Internet Explorer. Relying on user behaviour not to press a key when prompted, and effectively neutering much of the Internet don't really seem like viable long term workarounds for the vulnerability.

With the Security Bulletins for March only a week away, it is unlikely that a patch will be available in this month's release.

3 March 2010

Social bookmark this page at eKstreme.
Alternatively, Bookmark or Share via AddThis

Do you like how we cover Information Security news? How about checking out our company services, delivered the same way our news is.

Let our Free OS X Screen Saver deliver the latest security alerts and commentary to your desktop when you're not at your system.

Comments will soon be available for registered users.

More information:

Subscribe to our feed.

Commentary & Insight From Sûnnet Beskerming202420232022202120202019201820172016201520142013201220112010 - December - November - October - September - August - July - June - May - April - MarchMicrosoft Releases Out-of-Cycle Security PatchGoogle Takes the Tiger by the TailSecurityFocus No Longer Publishing InfoSec NewsNew Public Vulnerability Affects Internet Explorer 6 and 7 UsersMicrosoft Security Patch Release March 2010 Advance NotificationInternet Explorer, Help files, and VBScript - Remote Code Execution Allowed - February - January20092008200720062005

Focussed Advisories

Reach Us:

Reach us at
info@beskerming.com

Reach us via IM

Jabber:
Server - jabber.org.au Account - Sunnet.Beskerming

AIM / iChat:
sunnetbeskerming

ICQ:
339742914

Google Talk:
Sunnet.Beskerming

Yahoo! Messenger:
sunnet.beskerming

MSN:
info@beskerming.com

Testimonials

"...extremely timely, accurate reporting..."

"...honesty which is refreshing..."

Copyright © 2005-2011 Sûnnet Beskerming Pty. Ltd. Design by Andreas Viklund.