Bugtraq mailing list archives
Re: Update and comments on the MS02-023 patch, holes still remain
From: Andrew Clover <and () doxdesk com>
Date: Fri, 17 May 2002 09:27:37 +0000
Thor Larholm <Thor () jubii dk> wrote:
The above is merely misinformation on their parts. The Restricted Sites Zone tries to disable scripting ( a requisite for the dialogArguments vulnerability ), but many vulnerabilities allow you to circumvent this setting
Even non-vulnerabilities allow it. For example a <meta http-equiv="refresh"> can redirect to a page not within the Restricted Sites zone, and a <frame> or <iframe> can include content from a non-restricted site. It is also possible to create an about:<script>...</script> URL, which injects scripts into the Internet zone. Such URLs cannot be put in the Restricted Sites zone using the normal IE Security tab. Microsoft have refused to remove this undocumented behaviour. So essentially the Restricted Sites feature offers zero security protection by design. Users should not rely on it to enforce stricter settings than present in the Internet Zone. -- Andrew Clover mailto:and () doxdesk com http://and.doxdesk.com/
Current thread:
- Update and comments on the MS02-023 patch, holes still remain Thor Larholm (May 16)
- Re: Update and comments on the MS02-023 patch, holes still remain Andrew Clover (May 17)
- <Possible follow-ups>
- RE: Update and comments on the MS02-023 patch, holes still remain Thor Larholm (May 17)