Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security®  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs SecuriTeam™ in Your Inbox   E-mail this CVE-2009-1917 to a friend New vulnerability? New tool? Tell us	CVE-2009-1917 Microsoft Internet Explorer Use After Free Vulnerability     Credit: The information has been provided by Peter Vreugdenhil. The original article can be found at: http://labs.idefense.com/intelligence/vulnerabilities/ Website Security Scan Code Vulnerability Test Network Assessment Tool Detect hidden vulnerabilities Exhaustive automated testing Real-time, continuous security Get guidance from professionals of internal or 3rd party code. scanning for your entire network    CVE-2009-1917 Details Check for CVE-2009-1917 Vulnerability Assessment and Management. Automated Pen Testing for 50 to 50,000 nodes beyondsecurity.com/vulnerability-scanner Vulnerable Systems:  * Microsoft Internet Explorer version 6  * Microsoft Internet Explorer version 7  * Microsoft Internet Explorer version 8 Immune Systems:  * Microsoft Internet Explorer 5 The vulnerability occurs when the 'ondatasetcomplete' event method of a timeChildren object is referenced. If this occurs when the object is in an inconsistent state, a heap chunk will be freed, and then reused after being freed. This results in an uninitialized VTABLE being used, which can result in the execution of arbitrary code when the pointer is dereferenced. Exploitation of this vulnerability results in the execution of arbitrary code with the privileges of the user viewing the web page. To exploit this vulnerability, a targeted user must load a malicious web page created by an attacker. An attacker typically accomplishes this via social engineering or injecting content into compromised, trusted sites. After the user visits the malicious web page, no further user interaction is needed. Patch Availability: Microsoft Corp. has released an Out-Of-Band patch which addresses this issue. Information about downloadable vendor updates can be found by clicking on the URL shown: http://www.microsoft.com/technet/security/Bulletin/MS09-034.mspx Workaround Since this vulnerability is triggered through script code, disabling Active Scripting will prevent the exploitation of this vulnerability. CVE Information: CVE-2009-1917 Disclosure Timeline: 05/06/2009 - PoC Requested 06/06/2009 - PoC Sent 06/24/2009 - Tentative disclosure set to August 06/25/2009 - Requested CVE from vendor 06/25/2009 - Received CVE from vendor 07/23/2009 - Received updated disclosure notice for OOB in July 07/28/2009 - Coordinated public disclosure -------------------------------------------------------------------------------------------------------------------------------- Evaluate your site's resistance to the installation of malicious code. Have it scanned for vulnerabilities.  Comments on CVE-2009-1917:  Add new comment:  Subject:  Name/Nick/Email:          Chars Left:	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

Copyright © 1998-2010 Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®