Microsoft IE Install Engine Inseng.dll Arbitrary Code Execution

2004-10-12T17:18:16
ID OSVDB:10705
Type osvdb
Reporter Greg Jones(), Peter Winter-Smith(peter@ngssoftware.com)
Modified 2004-10-12T17:18:16

Description

Vulnerability Description

A remote overflow exists in Internet Explorer. Internet Explorer fails to properly check boundaries in input sent to inseng.dll resulting in a buffer overflow. With a specially crafted URL, an attacker can cause execution of arbitrary code with the privileges of the target user resulting in a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft Corporation has released a patch to address this vulnerability.

Short Description

A remote overflow exists in Internet Explorer. Internet Explorer fails to properly check boundaries in input sent to inseng.dll resulting in a buffer overflow. With a specially crafted URL, an attacker can cause execution of arbitrary code with the privileges of the target user resulting in a loss of integrity.

References:

Security Tracker: 1011640 Secunia Advisory ID:12806 Related OSVDB ID: 10708 Related OSVDB ID: 10709 Related OSVDB ID: 10710 Related OSVDB ID: 10704 Related OSVDB ID: 10706 Related OSVDB ID: 10707 Other Advisory URL: http://www.ngssoftware.com/advisories/msinsengfull.txt Microsoft Security Bulletin: MS04-038 Microsoft Knowledge Base Article: 834707 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-10/0084.html CVE-2004-0216 Bugtraq ID: 11366