Phishing using IE7 local resource vulnerability
- To: <full-disclosure@xxxxxxxxxxxxxxxxx>, <bugtraq@xxxxxxxxxxxxxxxxx>, <exploits@xxxxxxxxxxxxxxxxxxxxxx>
- Subject: Phishing using IE7 local resource vulnerability
- From: "avivra" <avivra@xxxxxxxxx>
- Date: Wed, 14 Mar 2007 21:32:44 +0200
- Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:from:to:subject:date:message-id:mime-version:content-type:content-transfer-encoding:x-mailer:thread-index:content-language:x-cr-hashedpuzzle:x-cr-puzzleid; b=ofRrhnrALzYP0gZK3HhcHYBTzQLJaYeq5qapET1Ml9AZlQo77YYdPc7/kSJwjfthRbm0WRub42WGawHtKRLOuCaWaIpTdJXOqsOkk0BTT2ql1HowZc2Vyx4x2Ll2qAHbsy2rTwT4PVOpNKT8kGb8vv7dcTZOylgOAT7cHPXgwfA=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:from:to:subject:date:message-id:mime-version:content-type:content-transfer-encoding:x-mailer:thread-index:content-language:x-cr-hashedpuzzle:x-cr-puzzleid; b=YL/SGHeeKTRN1T+FAu7r3p0OvLhcwZpFyMJxkjNJ90+Os1fmOp58vRikmDcVWEeJAvmQF1Rd8trD0maHTKu15nT8AmAjbHFcc6ELLJlNUd9rcgphAq5ygZ79rXaURKeiyIcj32JevIZHukGLs7JTGcOXUi9aZJFV5r5v0QR4Xr8=
- List-help: <mailto:bugtraq-help@securityfocus.com>
- List-id: <bugtraq.list-id.securityfocus.com>
- List-post: <mailto:bugtraq@securityfocus.com>
- List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
- List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
- Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
- Thread-index: Acdmb4GhfsIm0HlgTAOFuS4/V5JBKw==
Summary
Internet Explorer 7.0 is vulnerable to cross-site scripting in one of its
local resources. In combination with a design flaw in this specific local
resource it is possible for an attacker to easily conduct phishing attacks
against IE7 users.
Affected versions
. Windows Vista - Internet Explorer 7.0
. Windows XP - Internet Explorer 7.0
Workaround / Suggestion
Until Microsoft fixes this vulnerability, do not trust the "Navigation
Canceled" page!
Technical Details and Proof-of-Concept
Can be found here:
http://aviv.raffon.net/2007/03/14/PhishingUsingIE7LocalResourceVulnerability
.aspx