Exploit published for gaping (patched) IE hole

Exploit published for gaping (patched) IE hole

Summary: If you haven't applied the "critical" patch in Microsoft's MS07-009 bulletin, now might be a good time to hit that download-and-install button.Detailed exploit code for the vulnerability -- discovered during HD Moore's MOBB (month of browser bugs) project and fixed on Patch Tuesday in February -- has surfaced on the Internet, offering malware authors step-by-step instructions on how to launch PC takeover attacks.

SHARE:
7
If you haven't applied the "critical" patch in Microsoft's MS07-009 bulletin, now might be a good time to hit that download-and-install button.

Detailed exploit code for the vulnerability -- discovered during HD Moore's MOBB (month of browser bugs) project and fixed on Patch Tuesday in February -- has surfaced on the Internet, offering malware authors step-by-step instructions on how to launch PC takeover attacks.

The exploit code takes aim at a remote code execution flaw in the ADODB.Connection ActiveX control that is provided as part of the ActiveX Data Objects (ADO). This is distributed in MDAC (Microsoft Data Access Components).

In the MS07-009 bulletin, Microsoft warns:

An attacker could host a specially crafted Web site that is designed to exploit this vulnerability through Internet Explorer and then persuade a user to view the Web site. This can also include Web sites that accept user-provided content or advertisements, Web sites that host user-provided content or advertisements, and compromised Web sites. These Web sites could contain specially crafted content that could exploit this vulnerability... It could also be possible to display specially crafted Web content by using banner advertisements or by using other methods to deliver Web content to affected systems.

The publication of this exploit has caught the attention of the security research community because this type of vulnerability has been very popular with malicious attacks in the past.

Topics: Browser, Microsoft, Security

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

7 comments
Log in or register to join the discussion
  • Opera 9.1.

    Download it.
    Use it.
    Enjoy.

    http://www.opera.com
    Scrat
    • IE 7...

      ... patched, used daily... get it here - http://www.microsoft.com/windows/downloads/ie/getitnow.mspx?wt_svl=20006a&mg_id=20006b

      Opera is nice but...
      Confused by religion
  • Change your headline, it's not an IE hole

    The rest of your article seems to be correct: it is a hole in Microsoft Data Access Components (MDAC). IE could be used as an attack vector, but so could a customized Word document that instantiates the same ADODB.Connection object.
    PB_z
    • Pedant. The net effect is the same.

      Call it a "MDAC hole" and everyone will think "That's OK; I've never heard of MDAC so I guess I probably don't use it.", and so remain vulnerable.

      [i]IE could be used as an attack vector[/i]

      Yes.
      Zogg
  • Still a security freak show

    Windows is still a security freak show that's turning the internet into a dangerous place.

    http://redtape.msnbc.com/2007/03/bots_story.html

    There are just too many potential exploits for MSFT or anti-virus companies to keep in front of the tide.

    Windows is a fine operating system...provided it's not connected to the net. For that jungle you'll want Mac or Linux.
    Chad_z
    • Well, I see you mention alternatives

      But you left out Vista w/IE and Office 2007. Not affected by this. And these "gaping" holes are easily mitigated, like any OS by running as a regular user. Windows has had this ability longer than the Mac, so I'm not sure why you wouldn't point out the easiest thing of all, that costs no money. <br>
      As for Firefox and other Mozilla products and Linux in general, their vulnerability record is not better than MS, so I'm not sure why you are singling out MS. If this is just opinon, then fine, but it's not stated as such.
      xuniL_z
      • re: vista

        What about the recently released [b]Metasploit[/b], how does this affect vista? Also
        the asking price for vista is high. Not only in price, but the DRM/spyware that is
        required but Microsoft. Sure the NBM crowd (yourself included) say it's the best thing
        since sliced bread, but what about those that don't share your zeal?
        Rick_K