CERT-In:Indian Computer Emergency Response Team

HOME > VULNERABILITY NOTES

VULNERABILITY NOTE

CERT-In Vulnerability Note CIVN-2009-71
Multiple Vulnerabilities in Microsoft Internet Explorer

Original Issue Date:June 11, 2009

Severity Rating: High

Systems Affected

Windows Server 2008 for Itanium-based Systems
Windows Server 2008 for x64-based Systems
Windows Server 2008 for 32-bit Systems
Windows Vista x64 Edition SP1 and prior
Windows Vista SP1 and prior
Windows Server 2003 for Itanium-based Systems with SP2 and prior
Windows Server 2003 x64 Edition SP2 and prior
Windows Server 2003 SP2 and prior
Windows XP Professional x64 Edition SP2 and prior
Windows XP SP3 and prior
Windows 2000 SP 4

Components Affected

Internet Explorer 5.01
Internet Explorer 6 and SP1
Internet Explorer 7
Internet Explorer 8

Overview

Multiple vulnerabilities have been reported in Microsoft Internet Explorer. Successful exploitation of these vulnerabilities could allow an attacker to view sensitive information or execute arbitrary code in user's context and take complete control of the affected system.

Description

An attacker could exploit the following vulnerabilities by constructing a specially crafted Web page and by providing links through e-mail messages or attempt to inject malicious content into public sites that may accept user-submitted data. Successful exploitation results in remote code execution in user's context or information disclosure.

1. HTML Object Processing Memory Corruption Vulnerability          (CVE-2009-1530)

T his is a remote code vulnerability which exists due to invalid memory operations that may occur as the result of accessing deleted or uninitialized memory objects. If Internet Explorer processes a malformed HTML object, the application may corrupt process memory.

2. Cross-Domain Bypass Information Disclosure Vulnerability     (CVE-2007-3091)

This is an Information Disclosure vulnerability that exists due to a race condition present when handling page transitions in Internet Explorer. The error could allow requests from a domain to bypass the same-domain security model and access browser-based information (submitted form data or cookie-based authentication information) within other domains.

3. Uninitialized Memory Access Code Execution Vulnerability     (CVE-2009-1529)

This is a remote code execution vulnerability that exists due to invalid memory operations as the result of accessing uninitialized memory areas. The processing of malformed objects could cause Internet Explorer to access deleted or uninitialized memory, causing the corruption of process memory.

4. HTML Object Memory Corruption Vulnerability
    (CVE-2009-1528)

This is a remote code execution vulnerability that exists due to errors in handling malformed HTML objects. The processing of malicious HTML objects could cause Internet Explorer to access uninitialized memory areas, resulting in memory corruption.

5. Cross-Domain Cache Access Vulnerability (CVE-2009-1140)

This is an Information Disclosure vulnerability that exists due to insufficient security protections on cached data within Internet Explorer. The application fails to limit requests to cached data within other zones in Internet Explorer.

6. Dynamic HTML Object Processing Memory Corruption     Vulnerability (CVE-2009-1141)

This is a remote code execution vulnerability that exists due to improper processing of malformed DHTML objects. Internet Explorer may incorrectly process method calls, resulting in the corruption of process memory

7. Uninitialized Memory Access Code Execution Vulnerability     (CVE-2009-1531)

This is a remote code execution vulnerability that exists due to invalid operations on uninitialized memory objects. Internet Explorer may access removed or previously undefined memory objects as the result of processing malformed HTML content.

8. HTML Object Handling Code Execution Vulnerability
    (CVE-2009-1532)

This is a remote code execution vulnerability that exists due to an error in processing malformed HTML content. The processing of a malicious website could cause Internet Explorer to access deleted or uninitialized memory objects resulting in memory corruption

Workarounds

Set Internet and Local intranet security zone settings to "High" to prompt before running ActiveX Controls and Active Scripting in these zones
Configure Internet Explorer to prompt before running Active Scripting or to disable Active Scripting in the Internet and Local intranet security zone
Add sites that you trust to the Internet Explorer Trusted sites zon

For detailed steps and impact of applying these workarounds refer to Microsoft Security Bulletin MS09-019

Solution

Apply appropriate updates as mentioned in the Microsoft Security Bulletin MS09-019

Vendor Information

Microsoft
http://www.microsoft.com/technet/security/Bulletin/MS09-019.mspx
http://support.microsoft.com/kb/969897

References

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Phone: +91-11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003

Home || Feedback || FAQ || Disclaimer

CERT-In Vulnerability Note CIVN-2009-71 Multiple Vulnerabilities in Microsoft Internet Explorer

CERT-In Vulnerability Note CIVN-2009-71
Multiple Vulnerabilities in Microsoft Internet Explorer