Microsoft Internet Explorer STYLE Object Code Execution Vulnerability (977981)

Content

Microsoft Internet Explorer STYLE Object Code Execution Vulnerability (977981)

Type: Logic error
Impact of exploitation: Remote Code Execution
User Interaction: user interaction is needed
Attack Vector: Website with malicious content
Rating: High
CVE reference: CVE-2009-3672,
Vendor Status: Responded, not patched
Vulnerable systems: Internet Explorer 6 SP1 Windows 2000 SP4,; Internet Explorer 6 SP1,; Internet Explorer 6 Microsoft Windows Server 2003 SP1,; Internet Explorer 6 Windows Server 2003 SP1,; Internet Explorer 6 Windows Server 2003 SP1 Itanium,; Internet Explorer 6 Windows Server 2003 SP2,; Internet Explorer 6 Windows XP Professional X64 Edition SP2,; Internet Explorer 6 Windows XP SP2,; Internet Explorer 7,; Internet Explorer 7 Windows Server 2003 SP2 Itanium,; Internet Explorer 7 Windows 2000 SP4,; Internet Explorer 7 Windows Vista SP1,; Internet Explorer 7 Windows Vista X64 Edition SP1,; Internet Explorer 7 Windows Server 2008 X64 Edition,; Internet Explorer 7 Windows Server 2008 X32 Edition,; Internet Explorer 7 Windows Server 2008 Itanium Edition,; Internet Explorer 7 Windows XP SP2,; Internet Explorer 7 Windows XP Professional X64 Edition SP2,
Summary: A vulnerability in Microsoft Internet Explorer may allow remote code execution.

Tab Navigation

Description

A vulnerability in Microsoft Internet Explorer may allow remote code execution. Microsoft Internet Explorer 6 and 7 allows remote attackers to execute arbitrary code via vectors involving a call to the getElementsByTagName method for the STYLE tag name, selection of the single element in the returned list, and a change to the outerHTML property of this element Exploitation can be achieved via a specially-crafted web page. Failed exploit attempts may result in an application crash (denial-of-service)

McAfee Product Mitigation & Recommendations

Recommendations

McAfee is currently unaware of a vendor-supplied patch or update (11/23/2009).

McAfee Product Mitigation

McAfee Foundstone

Signature:: Microsoft Internet Explorer STYLE Object Code Execution Vulnerability
Signature identifier:: 7401
Release date:: 11/24/2009

McAfee Intrushield

Signature:: UDS-HTTP: Microsoft Internet Explorer STYLE Object Code Execution Vulnerability
Signature identifier:: 0x40270E00
Release date:: 11/23/2009
First released in:: UDS

McAfee VirusScan Enterprise 8.5i (VSE8.5i) /Total Protection for Small Business (ToPS SB) Buffer Overflow Protection

Signature:: Buffer Overflow Protection
Release date:: 11/30/2006
First released in:: Build 354

Additional Resources

Microsoft Internet Explorer CSS Handling Code Execution Vulnerability (0day)

http://www.vupen.com/english/advisories/2009/3301

IE7

http://seclists.org/bugtraq/2009/Nov/148

Microsoft Security Advisory (977981) Vulnerability in Internet Explorer Could Allow Remote Code Execution

http://www.microsoft.com/technet/security/advisory/977981.mspx

All Information

Timeline -

11/23/2009

Vendor has provided information on the vulnerability.

11/21/2009

Vulnerability information has been publicly disclosed.

11/20/2009

Vulnerability information has been publicly disclosed.

11/20/2009

A proof of concept has been released.

Description -