lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <200402260109622.SM01292@LocalHost>
From: Admin at SecureTarget.Net (Kaveh Mofidi)
Subject: PerfectNav Crashes IE

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1

 

Secure Target Network (Security Advisory February 25, 2004)

Topic: PerfectNav Crashes IE

Discovery Date: February 24, 2004

Link to Original Advisory: http://securetarget.net/advisory.htm

 

Affected applications and platforms:

Microsoft Internet Explorer 6 Service Pack 1 and older versions

 

Introduction:

PerfectNav is designed to redirect your URL typing errors to

PerfectNav's web page. Bundled with the Free Ad Supported version of

Kazaa Media Desktop 2.6. Likely to be found in software supplied by

eUniverse sites, such as thunderdownloads.com, myfreecursors.com,

cursorzone.com and mycoolscreen.com. Likely to slow performance of

Internet Explorer. Can download and execute arbitrary code as

directed by its controlling server, as an update feature.

All of us knew about Hijackers/Browser Helper Objects; some of them

may hijack your sessions but do you care crashing your web browser by

a single blink?

When you use PerfectNav it is easy to crash your Internet Explorer

(iexplore.exe) by any malformed URL like any thing you like: ? /? .

Run "iexplore.exe ?" or type "?" in your IE address bar and simply

get the error message:

"An error has occurred in Internet Explorer. Internet Explorer will

now close. If you continue to experience problems, please restart

your computer."

 

Exploit:

Easier to exploit than this bug? Just point out any malformed URL on

your target and it will be crashing her/his IE.

 

Workaround:

The easiest way to work around this vulnerability is just removing

PerfectNav from your computer. For information that may help you

prevent this problem from reoccurring, click on the link below.

http://www.pestpatrol.com/msperfectnavsupport.asp

If the problem persists, please contact eUniverse.com Inc. and alert

them of the problem.

Note: To have PestPatrol automatically detect and remove PerfectNav

and its components from your computer, you have to buy PestPatrol!

 

Tested on:

Internet Explorer 6 Service Pack 1 (6.0.2800.1106) on Windows XP

Service Pack 1a

 

Feedback:

Kaveh Mofidi (Admin@...ureTarget.Net)

Secure Target Network (Security Consulting/Training Group)

HTTP://SECURETARGET.NET

 

-----BEGIN PGP SIGNATURE-----

Version: PGP 8.0.2

 

iQA/AwUBQDyI0WO1siv41icpEQJxTwCcD3Jm+cGYEnZeYpKp/sfL4uDrgzYAoPIz

J+N/cjVVES/OmbDwpAcM9AR3

=Gsby

-----END PGP SIGNATURE-----

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20040226/b06dd622/attachment.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ