发布日期:2003-09-10
更新日期:2003-09-18
受影响系统:
Microsoft Internet EXPlorer 6.0
- Microsoft Windows XP Professional
- Microsoft Windows XP Home
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows ME
- Microsoft Windows 98 SE
- Microsoft Windows 98
- Microsoft Windows 2003 Web Edition
- Microsoft Windows 2003 Standard Edition
- Microsoft Windows 2003 Enterprise Edition 64-bit
- Microsoft Windows 2003 Enterprise Edition
- Microsoft Windows 2003 Datacenter Edition 64-bit
- Microsoft Windows 2003 Datacenter Edition
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server SP1
- Microsoft Windows 2000 Server
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Datacenter Server SP2
- Microsoft Windows 2000 Datacenter Server SP1
- Microsoft Windows 2000 Datacenter Server
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Advanced Server SP1
- Microsoft Windows 2000 Advanced Server
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 8577
Microsoft Internet Explorer是一款流行的WEB浏览程序。
Microsoft IE存在多个漏洞,远程攻击者可以利用这个漏洞构建恶意页面,诱使用户访问,使的恶意脚本在浏览器上执行。
Microsoft IE存在如下漏洞:
1、WsOpenFileJPU
演示页面如下:
http://www.safecenter.net/liudieyu/WsOpenFileJPU/WsOpenFileJPU-MyPage.HTM
or
http://umbrella.mx.tc
---> WsOpenFileJPU section
---> WsOpenFileJPU-MyPage file
[exp]
在UMBRELLA.MX.TC引用NAFfileJPU,然后使用:
window.open("file:javascript:[JpuScript]","_search")
绕过验证。
2、WsFakeSrc
演示页面如下:
http://www.safecenter.net/liudieyu/WsFakeSrc/WsFakeSrc-MyPage.HTM
