20101206 Sicherheitslücke im Internet Explorers Protected Mode
Details- Details
- Kategorie: Unsere Themen in der Presse
- Veröffentlichungsdatum
06.12.2010: Auch im Protected Mode ist ein Exploit möglich
Researchers from Verizon Business have now described a way of bypassing Protected Mode in IE 7 and 8 in order to gain access to user accounts. By calling the IELaunchURL() function, an attacker can instruct IE to load a URL from this web server, for instance "http://localhost/exploit.html". Localhost is generally part of IE's Local Intranet Zone and, by default, Protected Mode is disabled for content from this zone.Mehr dazu bei http://www.h-online.com/security/news/item/Internet-Explorer-s-Protected-Mode-can-be-bypassed-1147562.html
Alle Artikel zu
