• info
• discussion
• exploit
• solution
• references

Microsoft Internet Explorer WinINet.DLL FTP Server Response Parsing Memory Corruption Vulnerability

Solution:
Microsoft has released an advisory along with fixes to address this issue. Please see the references for more information.


Microsoft Internet Explorer 7.0

• Microsoft Cumulative Update for Internet Explorer 7 for Windows Server 2003 (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=36DAE010-AD1F -4E77-A353-9AFA41F065EA


• Microsoft Cumulative Update for Internet Explorer 7 for Windows Server 2003 64-bit Itanium Edition (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=631B590D-98CE -440D-B588-88CC31BB9370


• Microsoft Cumulative Update for Internet Explorer 7 for Windows Server 2003 x64 Edition (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=A05D1E57-6678 -4C25-B5E2-98F18BAA454B


• Microsoft Cumulative Update for Internet Explorer 7 for Windows XP Service Pack 2 (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=EE851EFD-2CAF -41CE-A423-E1827DE318DF


• Microsoft Cumulative Update for Internet Explorer 7 for Windows XP x64 Edition (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=AC084BBB-084D -47AC-BFDA-156E34A63817

Microsoft Internet Explorer 6.0 SP1

• Microsoft Cumulative Update for Internet Explorer 6 SP1 (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=D9E4181A-05F9 -4186-BDCA-C95351983844


• Microsoft Cumulative Update for Internet Explorer 6 SP1 (KB928090)
  Windows 2000 SP4
  http://www.microsoft.com/downloads/details.aspx?familyid=D9E4181A-05F9 -4186-BDCA-C95351983844


• Microsoft Cumulative Update for Internet Explorer for Windows Server 2003 (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=C6BCBE07-39C1 -4705-A10D-019DA3F997E5


• Microsoft Cumulative Update for Internet Explorer for Windows Server 2003 64-bit Itanium Edition (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=6476A14B-0D00 -4F55-A438-E140E9D26849


• Microsoft Cumulative Update for Internet Explorer for Windows Server 2003 x64 Edition (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=C18DB204-0F2C -4DD4-B29C-0938FF1BFD7B


• Microsoft Cumulative Update for Internet Explorer for Windows XP Service Pack 2 (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=D4038DC1-8AF6 -4BEA-82B8-EACCFF4CDB28


• Microsoft Cumulative Update for Internet Explorer for Windows XP x64 Edition (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=D6EEEA2C-785E -4DEF-913E-7F121556554F

Microsoft Internet Explorer 6.0

• Microsoft Cumulative Update for Internet Explorer for Windows Server 2003 (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=C6BCBE07-39C1 -4705-A10D-019DA3F997E5


• Microsoft Cumulative Update for Internet Explorer for Windows Server 2003 64-bit Itanium Edition (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=6476A14B-0D00 -4F55-A438-E140E9D26849


• Microsoft Cumulative Update for Internet Explorer for Windows Server 2003 x64 Edition (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=C18DB204-0F2C -4DD4-B29C-0938FF1BFD7B


• Microsoft Cumulative Update for Internet Explorer for Windows XP Service Pack 2 (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=D4038DC1-8AF6 -4BEA-82B8-EACCFF4CDB28


• Microsoft Cumulative Update for Internet Explorer for Windows XP x64 Edition (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=D6EEEA2C-785E -4DEF-913E-7F121556554F

Microsoft Internet Explorer 5.0.1 SP4

• Microsoft Cumulative Update for Internet Explorer 5.01 Service Pack 4 (KB928090)
  http://www.microsoft.com/downloads/details.aspx?familyid=2D83EFCE-E507 -4AFF-AB9B-EAF1D0D6320D