On GameSpot: Next-gen DS, Xbox tech contracts set?
BNET Business Network:
BNET
TechRepublic
ZDNet
90 TalkBacks

By Robert Lemos
Posted on ZDNet News: Aug 20, 2004 8:04:00 PM

An independent researcher warned that an Internet Explorer vulnerability could turn drag-and-drop into drag-and-infect, even on computers updated with Microsoft's latest security patch.

The flaw affects the latest version of Internet Explorer running on Windows XP, even after the latest major update--known as Service Pack 2--is applied. An attacker using the flaw could install a program on a victim's computer after convincing the person to visit a malicious Web site and click on a graphic.

The attacker's program would be placed in the Windows startup folder and would run the next time the user restarted the computer. The security researcher who discovered the flaw, known by the online nickname "http-equiv," posted an example to show the power of the flaw.

"If you look at the Web page, all you see are two red lines and an image; drag the image across the two lines and drop it," he said. "What you have actually done is drop (a program) into your startup folder. Next time you switch the computer on it runs the program."

Security information company Secunia believes the program that takes advantage of the issue could be simplified to only require a single click from the user. Secunia rated the flaw as "highly critical," its second-highest rating of vulnerability threats.

Microsoft said the issue did not pose a serious risk to users because it requires an attacker to trick people into visiting a Web site and taking some action at the site.

"Given the significant amount of user action required to execute an attack, Microsoft does not consider this to be a high risk for customers," a company representative said, adding that the software giant's security experts are continuing to research the issue.

Security researchers predicted that vulnerabilities would quickly be found in Windows XP Service Pack 2, or SP2. The drag-and-drop flaw is perhaps the most serious found to date in computers that have been patched with Microsoft's major security update.

Service Pack 2 promises to add better security to Windows XP's handling of network data, program memory, browsing activity and e-mail messages, by changing the system's code and configuration. A revamped firewall, for example, attempts to prevent malicious applications on a PC from connecting to the Internet by requiring that the user give specific permission for each attempt.

The SP2 software, which took almost a year to develop, is seen by many as a response to the attack launched by the MSBlast worm on Aug. 11, 2003. Almost 26 days before, Microsoft had issued a patch for the security hole exploited by the worm. However, many people did not install the fix, even though there was widespread expectation that a virus would be created to take advantage of the flaw.

Ironically, this time around, most people have not had a chance to update their computers with the security patch. The update became available only on Wednesday and will require almost a month to reach every Windows XP user who wants the software, Microsoft said.

Even so, security researcher "http-equiv" believes that the software giant's latest patch does its job.

"The patch really does lock down the machine nicely, and whatever anyone finds now will be completely different to the previous year's findings," he said.

SponsoredWhite Papers, Webcasts, and Downloads

  • Talkback
  • Most Recent of 90 Talkback(s)
Microsoft Crow Eaters Anonymous, "We're Incompetent, Please Ignore Us"
QUOTE
Microsoft said the issue did not pose a serious risk to users because it requires an attacker to trick people into visiting a Web site and taking some action at the site.

"Given the si... (Read the rest)
Posted by: boomslang_z Posted on: 09/25/04 You are currently: a Guest | | Terms of Use
Not critical??!  d_jedi | 08/20/04
So let me get this straight....  el1jones | 08/20/04
P.S. - Forgot to say, I totally agree (nt)  el1jones | 08/20/04
Yes  seosamh_z | 08/20/04
Imaginations like yours...  Immanuel Tranz-Mischen | 08/20/04
With imgainations like yours...  seosamh_z | 08/21/04
At least I have one.  Immanuel Tranz-Mischen | 08/21/04
Unfortunately yes you do  seosamh_z | 08/22/04
DO I HAVE TO SEPERATE YOU TWO!?!  Laff | 08/23/04
Something buried into the Linux kernel?  Chris Moller | 08/23/04
but the difference is...  ryusen | 08/23/04
serious yes, critical no...  ryusen | 08/23/04
Could, maybe, on the right day, with the help of the user.  No_Ax_to_Grind | 08/20/04
eh?  Iain_Peters | 08/20/04
That's a lousy business model you're promoting, Ax  whisperycat | 08/20/04
Failure to think like a social engineer...  John Le'Brecage | 08/20/04
Your overconfidence is your weakness...(nt)  Fred Fredrickson | 08/20/04
Point being, there will ALWAYS be...  No_Ax_to_Grind | 08/21/04
I don't let them off so easily...  John Le'Brecage | 08/21/04
Yes... But  Hayvern | 08/23/04
John is more right  Taz_z | 08/23/04
re: point being  Iain_Peters | 08/23/04
Don't worry....BE happy:)  Laff | 08/23/04
The help user.  Chris Moller | 08/23/04
supposed to have been "The help OF THE user."  Chris Moller | 08/23/04
Would be an easy trick . . .  K B | 08/23/04
Of course it isn't critical ...  Judas I. | 08/20/04
Embrace the darkness  alterego_z | 08/20/04
Baloney!  vferrara | 08/20/04
He probably meant the ISC.  Letophoro | 08/20/04
NOT balony  Iain_Peters | 08/20/04
continuing on from the post above this...  Monkey_MCSE | 08/20/04
Anecdotal evidence...  Martin Marvinski | 08/20/04
Just Stop Using Internet Exploiter & Outlook  brenthawkinsmd | 08/20/04
This is why....  DragonBRockin | 08/20/04
You should storm right over to the Redmond office  FilledOut | 08/20/04
I would prefer storming the Pharmacutical Offices  Laff | 08/23/04
My MCSE's fixed this...  Mike Cox | 08/20/04
brilliant n/t  NemesisNL | 08/20/04
9.8  toadlife | 08/20/04
a perfect 10!!! lolol  xshakes | 08/20/04
9.9  php_developer | 08/21/04
FREEDOM Judge (French)....8.3  Laff | 08/23/04
9.687  sa_z | 08/23/04
8  ynotpe@... | 08/23/04
4.8 from the Russian judge. Points off for...  James T. Kirk | 08/23/04
Not critical for me.  Immanuel Tranz-Mischen | 08/20/04
I think mike proposed a pretty decent solution happy n/t  NemesisNL | 08/20/04
What you dont understand...  DragonBRockin | 08/20/04
That's what MS wants you tol think.  TWRX | 08/20/04
I don't know about that, but one never knows  Monkey_MCSE | 08/20/04
You haven't met  mikeybrass | 08/21/04
Hmmm  dave95 | 08/20/04
Dear oh deary me...  Fred Fredrickson | 08/20/04
What you don't understand...  Immanuel Tranz-Mischen | 08/20/04
I Stand Corrected...My bad  DragonBRockin | 08/21/04
Don't have to be "techie" to use MandrakeLinux, Linspire, etc. either  Rick S._z | 08/21/04
And of course...  Rick S._z | 08/21/04
You might as well be telling these fools  mlindl | 08/22/04
Microsoft continue to stifle quality with mediocrity  whisperycat | 08/20/04
Phony Mac Righteousness  Bill_gates_Is_SATAN | 08/21/04
How many times have we heard this whine?  Rick_K | 08/21/04
PC Upgrade for Longhorn? Uh, no.  Bill_gates_Is_SATAN | 08/21/04
Speed Deamon?  in-DUH-vidual | 08/21/04
Just for fun, tell us what the compelling argument  mlindl | 08/23/04
Maybe you missed something  seosamh_z | 08/21/04
No, you did though.  Immanuel Tranz-Mischen | 08/21/04
God, you're painful  seosamh_z | 08/22/04
God, you're stupid.  Immanuel Tranz-Mischen | 08/22/04
WHAT?!?  Linux_Developer | 08/22/04
Uh....HELLO??  Bill_gates_Is_SATAN | 08/23/04
Proof! It's not Windows you like  mlindl | 08/23/04
If XP is mediocre, so are the rest  Bill_gates_Is_SATAN | 08/23/04
Choice  mikeybrass | 08/23/04
Oops  Rick_K | 08/21/04
Ouch, I'm sorry of somebody slammed Macs  FilledOut | 08/21/04
What can I say? Windows sucks.  Immanuel Tranz-Mischen | 08/21/04
Very good, Can you say anything else? NT  seosamh_z | 08/22/04
I am happy using Windows  FilledOut | 08/22/04
Good for you.  Immanuel Tranz-Mischen | 08/22/04
I'd feel fine as long as I learned the ends and outs of it  FilledOut | 08/23/04
Famous last words  DarthRidiculous | 08/21/04
And M$ want to  DarthRidiculous | 08/21/04
Relax, people. This is HARDLY a surprise.  Rick S._z | 08/21/04
I have this really neat Web Page Game...  boomslang_z | 08/21/04
Let me guess: winxp + IE only?  johnsmith222 | 08/22/04
HERES THE NAIL IN MICROSLOTHS COFFIN  itanalyst | 08/22/04
Half Right  in-DUH-vidual | 08/22/04
True, but  itanalyst | 08/22/04
Microsoft Crow Eaters Anonymous, "We're Incompetent, Please Ignore Us"  boomslang_z | 09/25/04

What do you think?

advertisement
advertisement

White Papers, Webcasts, and Downloads

Meet Doc