SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com






Category:   Application (Web Browser)  >   Microsoft Internet Explorer (IE) Vendors:   Microsoft
Microsoft Internet Explorer 'ieframe.dll' Lets Remote Users Spoof Invalid Certificates
SecurityTracker Alert ID:  1017165
SecurityTracker URL:  http://securitytracker.com/id/1017165
CVE Reference:   CVE-2006-5805   (Links to External Site)
Updated:  Jun 3 2008
Original Entry Date:  Nov 7 2006
Impact:   Modification of system information
Exploit Included:  Yes  
Version(s): 7
Description:   A vulnerability was reported in Microsoft Internet Explorer. A remote user can cause a URL to appear to have an invalid certificate.

A remote user can exploit a weakness in the 'invalidcert.htm' page in 'ieframe.dll' to create a link that, when loaded by the target user, will cause the address bar to display an arbitrary URL while the browser declares that the URL has an invalid certificate (when, in fact, the displayed URL does not have an invalid certificate).

A demonstration exploit URL is provided:

res://ieframe.dll/invalidcert.htm#https://www.websh0pper.xom

The original advisory and a demonstration exploit is available at:

http://ingehenriksen.blogspot.com/

Inge Henriksen discovered this vulnerability.

Impact:   A remote user can create content that will cause the address bar to display an arbitrary URL while the browser declares that the URL has an invalid certificate.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.microsoft.com/ (Links to External Site)
Cause:   State error
Underlying OS:   Windows (2003), Windows (XP)

Message History:   None.


 Source Message Contents

Date:  Fri, 03 Nov 2006 18:00:48 +0000
Subject:  IE7 website security certificate discrediting exploit

** Inge Henriksen Security Advisory - Full Disclosure Proof of Concept at http://ingehenriksen.blogspot.com/ **

Advisory Name: IE7 website security certificate discrediting exploit 
Tested and Confirmed Vulnerable: Microsoft(R) Internet Explorer(R) 7 
Severity: Low 
Type: Spoof 
>From where: Remote 
Discovered by: Inge Henriksen (http://ingehenriksen.blogspot.com/) 
Vendor Status: Notified 
Overview: 

It is possible to create a link in Microsoft(R) Internet Explorer(R) 7 that discredits a websites security certificate. The bad design
 is in the ieframe.dll's embedded invalidecert.htm.

Full Disclosure Proof of Concept at http://ingehenriksen.blogspot.com/

 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

Copyright 2014, SecurityGlobal.net LLC