Content

(MS07-057) Microsoft Internet Explorer Address Bar Spoofing Vulnerability II (939653)

Type
Logic error
Impact of exploitation
Spoofing
User Interaction
user interaction is needed
Attack Vector
Website with malicious content
Rating
Medium
CVE reference
CVE-2007-1091,
Vendor Status
Responded and patched
Vulnerable systems
Internet Explorer  6,
Internet Explorer  7,
Internet Explorer  5.01,
Summary
A vulnerability in Microsoft Internet Explorer may allow for spoofing attacks. A user would to visit a malicious Web site for an attack to occur.

Tab Navigation

Description

Microsoft Internet Explorer is an industry-standard Web browser. A vulnerability in Microsoft Internet Explorer (IE) may allow for spoofing attacks. A malicious Web site could stop another site from loading and spoof the IE address bar due to an error in the handling of 'onUnload' events. A user would to visit a malicious Web site for an attack to occur.

McAfee Product Mitigation & Recommendations

Recommendations

Download and install the patch available from Microsoft(939653): http://www.microsoft.com/technet/security/Bulletin/MS07-057.mspx

McAfee Product Mitigation

McAfee Foundstone

This Foundstone vulnerability check can be used to assess if your systems are vulnerable and is expected to accurately identify if a system is vulnerable in many enterprise environments.

Signature:
(MS07-057) Microsoft Internet Explorer Address Bar Spoofing Vulnerability II (939653)
Signature identifier:
5520
Release date:
10/9/2007

Additional Resources

MSIE7 browser entrapment vulnerability (probably Firefox, too)

http://seclists.org/fulldisclosure/2007/Feb/0523.html

Microsoft Security Bulletin: Cumulative Security Update for Internet Explorer (939653)

http://www.microsoft.com/technet/security/Bulletin/MS07-057.mspx

All Information

Timeline -

1/9/2008

Vendor has supplied information for a non-security related issue

10/9/2007

Vendor has provided a patch.

2/23/2007

Vulnerability information has been publicly disclosed.

Description -

Microsoft Internet Explorer is an industry-standard Web browser. A vulnerability in Microsoft Internet Explorer (IE) may allow for spoofing attacks. A malicious Web site could stop another site from loading and spoof the IE address bar due to an error in the handling of 'onUnload' events. A user would to visit a malicious Web site for an attack to occur.

McAfee Product Mitigation & Recommendations

Recommendations -

Download and install the patch available from Microsoft(939653): http://www.microsoft.com/technet/security/Bulletin/MS07-057.mspx

McAfee Product Mitigation

McAfee Foundstone

This Foundstone vulnerability check can be used to assess if your systems are vulnerable and is expected to accurately identify if a system is vulnerable in many enterprise environments.

Signature:
(MS07-057) Microsoft Internet Explorer Address Bar Spoofing Vulnerability II (939653)
Signature identifier:
5520
Release date:
10/9/2007

Additional Resources

Additional Resources -

MSIE7 browser entrapment vulnerability (probably Firefox, too)

http://seclists.org/fulldisclosure/2007/Feb/0523.html

Microsoft Security Bulletin: Cumulative Security Update for Internet Explorer (939653)

http://www.microsoft.com/technet/security/Bulletin/MS07-057.mspx