A big thanks goes out to VikingStorm for spotting this bit of news first. Secunia has discovered four new Internet Explorer vulnerabilities. These bugs affect IE 5.01, IE 5.5, and IE 6.
Paul has reported some vulnerabilities in Internet Explorer, allowing malicious people to bypass security restrictions and potentially compromise a vulnerable system.
- It is possible to redirect a function to another function with the same name, which allows a malicious website to access the function without the normal security restrictions.
- Malicious sites can trick users into performing actions like drag"n"drop or click on a resource without their knowledge. An example has been provided, which allows sites to add links to "Favorites". However, resources need not be links and the destination could be different than "Favorites".
- It is possible to inject arbitrary script code into Channel links in Favorites, which will be executed when the Channel is added. The script code is executed in Local Security Zone context.
- It is possible to place arbitrary content above any other window and dialog box using the "Window.createPopup()" function. This can be exploited to "alter" the appearance of dialog boxes and other windows.