Bugtraq: RE: Six Step IE Remote Compromise Cache Attack

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

RE: Six Step IE Remote Compromise Cache Attack

From: "Steve Hillier" <steve () mastermindtoys com>
Date: Wed, 5 Nov 2003 17:39:53 -0500

I see this more as a method to bring attention to the fact that even
though the individual flaws seem trivial, they can be combined to
perform a malicious act.

Vendors often do not act on an individual flaw as quickly if they feel
the exploit is trivial. This however shows that the individual flaws
pose a greater risk when combined, and that a 'trivial' flaw shouldn't
be ignored simply because it seems 'harmless'.

Why have these flaws not been patched even after almost two years of
knowing that they exist?


 
Steve Hillier, B.Sc.
Manager of Information Services
Mastermind Educational
www.mastermindtoys.com

-----Original Message-----
From: Thor Larholm [mailto:thor () pivx com] 
Sent: Wednesday, November 05, 2003 5:23 p
To: Liu Die Yu; bugtraq () securityfocus com
Subject: RE: Six Step IE Remote Compromise Cache Attack

This post raises an interesting question. Is our goal to find 
new vulnerabilities and attack vectors to help secure users 
and critical infrastructures, or is our goal to ease 
exploitation of existing vulnerabilities?

There are no new vulnerabilities or techniques highlighted in 
this attack (which is what it is), just a combination of 
several already known vulnerabilities. This is not a 
proof-of-concept designed to highlight how a particular 
vulnerability works, but an exploit designed specifically to 
compromise your machine. All a malicious viruswriter has to 
do is exchange the EXE file.

Believe me, I am all in for full disclosure and detailing 
every aspect of a vulnerability to prevent future occurances 
of similar threats, but I don't particularly think that we 
should actively be trying to help malicious persons.

Regards
Thor Larholm
Senior Security Researcher
PivX Solutions, LLC
Get our research, join our mailinglist - http://pivx.com/larholm/

-----Original Message-----
From: Liu Die Yu [mailto:liudieyuinchina () yahoo com cn] 
Sent: Wednesday, November 05, 2003 2:35 AM
To: bugtraq () securityfocus com
Subject: Six Step IE Remote Compromise Cache Attack

Snip 
http://www.securityfocus.com/archive/1/343464/2003->

11-02/2003-11-08/0

By Date By Thread

Current thread:

Six Step IE Remote Compromise Cache Attack Liu Die Yu (Nov 05)
- <Possible follow-ups>
- RE: Six Step IE Remote Compromise Cache Attack Thor Larholm (Nov 05)
  - RE: Six Step IE Remote Compromise Cache Attack Steve Hillier (Nov 05)
  - RE: Six Step IE Remote Compromise Cache Attack Benjamin Franz (Nov 05)
  - RE: Six Step IE Remote Compromise Cache Attack white colin john (Nov 05)
    - RE: Six Step IE Remote Compromise Cache Attack Tyler Larson (Nov 06)
    - Re: Six Step IE Remote Compromise Cache Attack Florian Weimer (Nov 07)
  - Re: Six Step IE Remote Compromise Cache Attack Florian Weimer (Nov 05)