OSVDB ID: 31892

Title: Microsoft IE FTP Server Response Parsing Memory Corruption

Info

Disclosure

Feb 13, 2007

Discovery

Aug 16, 2006

Dates

Exploit

Mar 09, 2007

Solution

Unknown

Description

A remote overflow exists in Internet Explorer. The wininet.dll FTP client fails to validate FTP server responses resulting in a heap overflow. With a specially crafted server response, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public, Exploit Private

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation

Internet Explorer

5
6

References

Credit

  • Greg MacManus - iDEFENSE Labs


Direct URL: http://osvdb.org/31892