Welcome to our website
To take full advantage of all features you need to login or register. Registration is completely free and takes only a few seconds.
Temporary solution for Internet Explorer Vulnerability
Posted by Philipp Esselbach on: 04/11/2004 03:42 PM [ Print | 0 comment(s) ]
OnlyNewZ has posted an unofficial patch for Internet Explorer
Temporary solution for the recent discoverd vulnerability (by The United States-Computer Emergency Readiness Team) in all Internet Explorers 5.01 and higher.
If an ITS protocol handler is unable to access the specified MHTML file, the handler will attempt to access the content specified by the alternate location. The ITS protocol handlers incorrectly treat HTML content from one domain (htmlfile.html in example.com) as if it were in a different domain (file://, the Local Machine Zone). This is a violation of the cross-domain security model. Limited testing shows that the ms-its, its, and mk:@MSITStore protocol handlers are vulnerable.
If an ITS protocol handler is unable to access the specified MHTML file, the handler will attempt to access the content specified by the alternate location. The ITS protocol handlers incorrectly treat HTML content from one domain (htmlfile.html in example.com) as if it were in a different domain (file://, the Local Machine Zone). This is a violation of the cross-domain security model. Limited testing shows that the ms-its, its, and mk:@MSITStore protocol handlers are vulnerable.
Read more
Related Threads
06/12/2006 10:13 AM: Temporary Internet Folder Gone Gonzo! (5) by Cormac
11/04/2007 02:01 PM: Local, roaming and temporary profile (1) by dno1creator
02/14/2005 09:29 AM: Local, roaming and temporary profile (0) by melissasue
11/18/2004 10:27 PM: Permanent Implementation of Temporary Terminal Services CALs in W2K Server (6) by adamvjackson
03/03/2005 10:09 AM: Temporary Internet Files Folder - Understanding It (13) by markcoutinho
12/29/2002 01:26 AM: temporarily hangs in Windows XP (9) by radx
10/21/2001 12:20 PM: Temporary Files (help ?) (1) by bobbinbrisco
02/09/2001 10:09 PM: Temporary Internet Files Deleted! (3) by lexluthor
11/04/2007 02:01 PM: Local, roaming and temporary profile (1) by dno1creator
02/14/2005 09:29 AM: Local, roaming and temporary profile (0) by melissasue
11/18/2004 10:27 PM: Permanent Implementation of Temporary Terminal Services CALs in W2K Server (6) by adamvjackson
03/03/2005 10:09 AM: Temporary Internet Files Folder - Understanding It (13) by markcoutinho
12/29/2002 01:26 AM: temporarily hangs in Windows XP (9) by radx
10/21/2001 12:20 PM: Temporary Files (help ?) (1) by bobbinbrisco
02/09/2001 10:09 PM: Temporary Internet Files Deleted! (3) by lexluthor