Spyware, Viruses, & Security forum

General discussion

VULNERABILITIES - November 16, 2005

by Donna Buenaventura / November 15, 2005 10:37 PM PST

Opera Image Control Status Bar Spoofing Weakness

Claudio "Sverx" has discovered a weakness in Opera, which can be exploited by malicious people to trick users into visiting a malicious website by obfuscating URLs displayed in the status bar.

The problem is that the browser fails to show the correct URL in the status bar if an image control with a "title" attribute has been enclosed in a hyperlink and uses a form to specify the destination URL. This may cause a user to follow a link to a seemingly trusted website when in fact the browser opens a malicious website.

This weakness is related to: SA17565

Solution: Do not follow links from untrusted sources.

http://secunia.com/advisories/17571/

Discussion is locked
You are posting a reply to: VULNERABILITIES - November 16, 2005
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: VULNERABILITIES - November 16, 2005
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
Internet Explorer Image Control Status Bar Spoofing Weakness
by Donna Buenaventura / November 15, 2005 10:42 PM PST

Claudio "Sverx" has discovered a weakness in Internet Explorer, which can be exploited by malicious people to trick users into visiting a malicious website by obfuscating URLs displayed in the status bar.

The problem is that the browser fails to show the correct URL in the status bar if an image control has been enclosed in a hyperlink and uses a form to specify the destination URL. This may cause a user to follow a link to a seemingly trusted website when in fact the browser opens a malicious website.

Solution:
Do not follow links from untrusted sources.

http://secunia.com/advisories/17565/

Collapse -
iTunes For Windows Arbitrary Local Code Execution Vuln.
by Donna Buenaventura / November 15, 2005 10:50 PM PST

Apple iTunes for Windows is prone to an arbitrary local code execution vulnerability.

This is due to a design error in which malicious code may be executed in the context of the user running the affected application.

Vulnerable: Apple iTunes 5.0
Solution: Upgrade to iTunes 6.0

http://www.securityfocus.com/bid/15446

Collapse -
Multiple Vendor Antivirus Products Obscured File Name Scan
by Donna Buenaventura / November 15, 2005 11:05 PM PST

Evasion Vulnerability

Multiple antivirus products from various vendors are reported prone to a vulnerability that may allow malicious files to bypass detection.

This issue arises when an affected application processes a file with an obscured file name.

This issue could result in malicious files bypassing detection and allowing them to be opened by a recipient.

Vulnerable:
Symantec AntiVirus Corporate Edition 8.0
RAV AntiVirus RAV AntiVirus Desktop 8.6
Microsoft AntiSpyware beta 1
Kaspersky Labs Anti-Virus Personal 4.5 .104
Kaspersky Labs Anti-Virus for Windows File Servers 4.5 .104
Frisk Software F-Prot Antivirus 3.16 c
ClamWin ClamWin 0.87
Avast! Antivirus Professional Edition 4.6.603

http://www.securityfocus.com/bid/15423/info

Collapse -
Sony CD First4Internet XCP Uninstallation ActiveX Control
by roddy32 / November 15, 2005 11:48 PM PST

TITLE:
Sony CD First4Internet XCP Uninstallation ActiveX Control
Vulnerability

SECUNIA ADVISORY ID:
SA17610

VERIFY ADVISORY:
http://secunia.com/advisories/17610/

CRITICAL:
Highly critical

IMPACT:
System access

WHERE:
From remote

SOFTWARE:
First4Internet XCP Content Management
http://secunia.com/product/6033/

DESCRIPTION:
A vulnerability has been reported in First4Internet XCP's
uninstallation ActiveX control, which potentially can be exploited by
malicious people to compromise a user's system.

The vulnerability is caused due to the "CodeSupport.ocx" ActiveX
control that is installed via Internet Explorer when the user
un-installs the XCP DRM software by visiting the vendor's website.
The ActiveX control is marked safe-for-scripting and supports several
potentially dangerous methods like "RebootMachine", "InstallUpdate",
and "IsAdministrator". This may be exploited to install arbitrary
code on the user's system.

Successful exploitation requires that the user visits a malicious
website.

The vulnerability is related to:
SA17408

SOLUTION:
Remove the ActiveX control from the system if it is installed.

PROVIDED AND/OR DISCOVERED BY:
Muzzy, J. Alex Halderman, and Ed Felten.

ORIGINAL ADVISORY:
http://www.freedom-to-tinker.com/?p=927
http://hack.fi/~muzzy/sony-drm/

OTHER REFERENCES:
SA17408:
http://secunia.com/advisories/17408/

Popular Forums
icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

CNET FORUMS TOP DISCUSSION

Help, my PC with Windows 10 won't shut down properly

Since upgrading to Windows 10 my computer won't shut down properly. I use the menu button shutdown and the screen goes blank, but the system does not fully shut down. The only way to get it to shut down is to hold the physical power button down till it shuts down. Any suggestions?