BugTraq
.MHT Buffer Overflow in Internet Explorer Mar 10 2003 04:30AM
Tom Tanaka (tomatell canon-sol jp) (2 replies)
Re: .MHT Buffer Overflow in Internet Explorer Mar 11 2003 10:05PM
Jouko Pynnonen (jouko solutions fi)
Re: .MHT Buffer Overflow in Internet Explorer Mar 11 2003 07:48PM
jelmer (jelmer kuperus xs4all nl) (1 replies)
Re: .MHT Buffer Overflow in Internet Explorer Mar 12 2003 04:29PM
Thor Larholm (thor pivx com)
> From: "jelmer" <jelmer (at) kuperus.xs4all (dot) nl [email concealed]>
> I believe from ie6 SP1 on IE doesn't open any mht files directly from the
> web anymore.
> from the local filesystem it still works though.

That's the funny thing, IE6 SP1 still allows opening MHT files directly from
the web in the Internet Zone, so this is remotely exploitable on websites.

Since MHT files are opened automatically, just like certain other media
files, you can also open an MHT file automatically through an email message
in the Restricted Zone.

Regards
Thor Larholm
PivX Solutions, LLC - Senior Security Researcher

[ reply ]
 

Privacy Statement
Copyright 2010, SecurityFocus