[14541] in bugtraq
Re: Reappearance of an old IE security bug
daemon@ATHENA.MIT.EDU (Vladimir Dubrovin)
Mon Apr 17 16:17:14 2000
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-Id: <3622.000417@sandy.ru>
Date: Mon, 17 Apr 2000 14:56:36 +0400
Reply-To: Vladimir Dubrovin <vlad@sandy.ru>
From: Vladimir Dubrovin <vlad@SANDY.RU>
X-To: Ben Mesander <bam@DIMENSIONAL.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <l03130301b51ff7d482a8@[10.0.0.3]>
Hello Ben Mesander,
I cann't confirm this bug.
17.04.00 3:09, you wrote: Reappearance of an old IE security bug;
B> I have found a way to have a Java applet open a connection to an arbitrary
B> host and violate the Java security model in Internet Explorer 5. This is a bug
B> I first discovered in 1997, and Microsoft fixed it then. It seems to
B> have reappeared in the latest IE 5.
Under MSIE 5.01 (5.00.2919.6307) WinNT 4.0/SP6a, Java Security is set
to "high" applet generates security exception.
B> This vulnerability allows malicious websites to download a java applet to
B> a user's desktop, and use the desktop to send content from sites inside a
B> firewall to the malicious webserver or another host.
B> http://www.hungry.com/~ben/msie_bug/
B> --Ben
+=-=-=-=-=-=-=-=-=+
|Vladimir Dubrovin|
| Sandy Info, ISP |
+=-=-=-=-=-=-=-=-=+
