Vulnerability Development mailing list archives
Re: Automatic MIME type detection in Internet Explorer 6.x allowed
From: Denis Jedig <seclists () syneticon de>
Date: Fri, 04 Aug 2006 20:54:43 +0200
Thor Larholm wrote:
Denis Jedig wrote:If you change file headers to JPEGs, it's not an executable file any more - that simple.When the file headers are JPEG it's no longer an executable file - for that specific HTTP session of that specific IEXPLORE instance.
Well, it will carry on having JPEG headers for every instance of IEXPLORE regardless of the HTTP sessions currently open. So how can this be a security problem?
Outside those constraints, you have still managed to plant an EXE file in a known/predictable location on the target system.
A file named EXE but not a valid executable in itself, right? I remember there was some interesting work some months ago on header ambiguity but I can't find the reference right now.
Regards, Denis
Current thread:
- Automatic MIME type detection in Internet Explorer 6.x allowed knight4vn (Aug 03)
- Re: Automatic MIME type detection in Internet Explorer 6.x allowed Denis Jedig (Aug 03)
- Re: Automatic MIME type detection in Internet Explorer 6.x allowed Thor Larholm (Aug 04)
- Re: Automatic MIME type detection in Internet Explorer 6.x allowed Denis Jedig (Aug 04)
- Re: Automatic MIME type detection in Internet Explorer 6.x allowed Thor Larholm (Aug 04)
- <Possible follow-ups>
- Re: Re: Automatic MIME type detection in Internet Explorer 6.x allowed none (Aug 10)
- Re: Re: Automatic MIME type detection in Internet Explorer 6.x allowed der wert (Aug 10)
- Re: Automatic MIME type detection in Internet Explorer 6.x allowed Denis Jedig (Aug 03)