Microsoft Internet Explorer HTML Decoding Remote Code Execution Vulnerability

2006-06-13T00:00:00
ID SMNTC-18309
Type symantec
Reporter Symantec Security Response
Modified 2006-06-13T00:00:00

Description

Description

Internet Explorer is vulnerable to remote code execution. An attacker could exploit this issue to execute code in the context of the user visiting a malicious web page.

Technologies Affected

  • Microsoft Internet Explorer 5.0.1
  • Microsoft Internet Explorer 5.0.1 SP1
  • Microsoft Internet Explorer 5.0.1 SP2
  • Microsoft Internet Explorer 5.0.1 SP3
  • Microsoft Internet Explorer 5.0.1 SP4
  • Microsoft Internet Explorer 5.0.1 for Windows 2000
  • Microsoft Internet Explorer 5.0.1 for Windows 95
  • Microsoft Internet Explorer 5.0.1 for Windows 98
  • Microsoft Internet Explorer 5.0.1 for Windows NT 4.0
  • Microsoft Internet Explorer 5.5
  • Microsoft Internet Explorer 5.5 SP1
  • Microsoft Internet Explorer 5.5 SP2
  • Microsoft Internet Explorer 5.5 preview
  • Microsoft Internet Explorer 6.0
  • Microsoft Internet Explorer 6.0 SP1
  • Microsoft Internet Explorer 7.0 beta1
  • Microsoft Internet Explorer 7.0 beta2

Recommendations

Run all software as a nonprivileged user with minimal access rights.
To reduce the impact of latent vulnerabilities, always run non-administrative software as an unprivileged user with minimal access rights.

Do not follow links provided by unknown or untrusted sources.
Attackers could exploit this vulnerability by enticing a user to visit a malicious website. Do not follow links provided by sources of questionable integrity.

Implement multiple redundant layers of security.
Since this issue may be leveraged to execute code, we recommend memory-protection schemes, such as non-executable stack/heap configurations and randomly mapped memory segments. This tactic may complicate exploits of memory-corruption vulnerabilities.

Do not open email messages from unknown or untrusted individuals.
This vulnerability could be exploited through HTML email messages. Do not accept any email from sources of questionable integrity.

Microsoft has released an advisory to address this issue.