Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Microsoft Internet Explorer Cookie Based Script Execution Vulnerability

Microsoft Internet Explorer Cookie Based Script Execution Vulnerability

by Nikola Strahija on April 1st, 2002 By default Microsoft Internet Explorer executes scripts from websites in the Internet Zone. Due to a flaw in the way that Internet Explorer deals with cookies, it will execute any scripts embedded within a cookie in the Local Computer zone with the same privilege level as the currently logged in user.


Remote: Yes

Exploit: No

Solution:
Microsoft has released patches to address this issue:



Microsoft Internet Explorer 5.0.1 SP2:

Microsoft Patch Q319182 IE5.01 SP2
http://download.microsoft.com/download/ie501sp2/secpac26/5.01_sp2/W982KNT4/EN-US/q319182.exe

Microsoft Internet Explorer 5.0.1 SP1:
Microsoft Internet Explorer 5.5 SP2:

Microsoft Patch Q319182 IE5.5 SP2
http://download.microsoft.com/download/ie55sp2/secpac26/5.5_sp2/WIN98Me/EN-US/q319182.exe

Microsoft Internet Explorer 5.5 SP1:

Microsoft Patch Q319182 IE5.5 SP1
http://download.microsoft.com/download/ie55sp1/secpac26/5.5_sp1/WIN98Me/EN-US/q319182.exe

Microsoft Internet Explorer 5.5:
Microsoft Internet Explorer 6.0:

Microsoft Patch Q319182 IE6
http://download.microsoft.com/download/IE60/secpac26/6/W98NT42KMeXP/EN-US/q319182.exe




Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »