Microsoft IE Popup.show() Click Hijack (HijackClick 3)

2004-07-11T07:15:39
ID OSVDB:7774
Type osvdb
Reporter Paul(paul@greyhats.cjb.net)
Modified 2004-07-11T07:15:39

Description

Vulnerability Description

Microsoft Internet Explorer contains a flaw that may allow a malicious user to induce a drag-and-drop event within the browser. The issue is triggered when the victim clicks on a link with the popup.show() function defined as an onMouseclick event. It is possible that the flaw may allow an attacker to deliver executable code to the victim's computer without further user interaction, resulting in a loss of integrity.

Solution Description

Currently, there are no known upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability. Also, it is possible to correct the flaw by implementing the following workaround: Disable ActiveX controls and Active Scripting for untrusted web sites.

Short Description

Microsoft Internet Explorer contains a flaw that may allow a malicious user to induce a drag-and-drop event within the browser. The issue is triggered when the victim clicks on a link with the popup.show() function defined as an onMouseclick event. It is possible that the flaw may allow an attacker to deliver executable code to the victim's computer without further user interaction, resulting in a loss of integrity.

References:

Secunia Advisory ID:12048 Secunia Advisory ID:9711 Related OSVDB ID: 10708 Related OSVDB ID: 3094 Related OSVDB ID: 7891 Other Advisory URL: http://freehost07.websamba.com/greyhats/hijackclick3-discussion.htm Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-07/0105.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-07/0107.html Keyword: window.createPopup() Keyword: HijackClick 3 Bugtraq ID: 10690