[27572] in bugtraq
RE: Vulnerable cached objects in IE (9 advisories in 1)
daemon@ATHENA.MIT.EDU (Thor Larholm)
Wed Oct 23 11:54:27 2002
Message-ID: <52D05AEFB0D95C4BAD179A054A54CDEB03470EB4@mailsrv1.jubii.dk>
From: Thor Larholm <Thor@jubii.dk>
To: "'jelmer'" <jkuperus@xs4all.nl>, Bugtraq <bugtraq@securityfocus.com>
Date: Wed, 23 Oct 2002 11:13:57 +0200
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
> From: jelmer [mailto:jkuperus@xs4all.nl]
> The external method flaw also seems to affects my ie6 sp1 browser
I can confirm this as well, together with the clipboardData method flaw.
It's a surprise that Microsoft didn't fix this globally in SP1, instead of
applying checks to each individual method and object. At first, I assumed
they had made a generic fix, but with this in the open it is clear that they
only patched specifics and that there will be many more vulnerabilities in
the method/object caching category.
Regards
Thor Larholm
