[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Major Internet Explorer Vulnerability - NOT Patched

To: bugtraq@xxxxxxxxxxxxxxxxx, fulldisclosure@xxxxxxxxxxxx, bugs@xxxxxxxxxxxxxxxxxxx, cve-assign@xxxxxxxxx
Subject: Major Internet Explorer Vulnerability - NOT Patched
From: David Leo <david.leo@xxxxxxxxxxxx>
Date: Sat, 31 Jan 2015 22:18:41 +0800

Deusen just published code and description here:
http://www.deusen.co.uk/items/insider3show.3362009741042107/
which demonstrates the serious security issue.

Summary
An Internet Explorer vulnerability is shown here:
Content of dailymail.co.uk can be changed by external domain.

How To Use
1. Close the popup window("confirm" dialog) after three seconds.
2. Click "Go".
3. After 7 seconds, "Hacked by Deusen" is actively injected into 
dailymail.co.uk.

Technical Details
Vulnerability: Universal Cross Site Scripting(XSS)
Impact: Same Origin Policy(SOP) is completely bypassed
Attack: Attackers can steal anything from another domain, and inject anything 
into another domain
Tested: Jan/29/2015 Internet Explorer 11 Windows 7

If you like it, please reply "nice".

Kind Regards,

Prev by Date: Defense in depth -- the Microsoft way (part 27): the command line you get differs from the command line I use to call you
Next by Date: [SECURITY] [DSA 3148-1] chromium-browser end of life
Previous by thread: Defense in depth -- the Microsoft way (part 27): the command line you get differs from the command line I use to call you
Next by thread: Re: [FD] Major Internet Explorer Vulnerability - NOT Patched
Index(es):
- Date
- Thread