| Vigil@nce team describes computer vulnerabilities impacting your systems, and offers solutions to correct them. |
|
 |
|
|
|
vulnerability CVE-2010-0483
Windows, IE: execution of HLP code via VBScript
Synthesis of the vulnerability
| An attacker can invite the victim to press the F1 key from Internet Explorer, in order to execute code on his computer. |
Severity: 3/4.
Creation date: 01/03/2010.
Revision date: 02/03/2010.
|
Description of the vulnerability
An HTML page can contain script code written in JavaScript or VBscript. The VBscript MsgBox() function has several optional parameters:
MsgBox(prompt[,buttons][,title][,helpfile,context])
The "helpfile" parameter indicates the name of an HLP help file for winhlp32.exe. This file is opened when the MsgBox window is displayed, and when the user presses the key F1.
However, this help file can be located on a remote CIFS/SMB share, and can contain calls to Windows commands.
An attacker can therefore invite the victim to press the F1 key from Internet Explorer, in order to execute code on his computer. |
Complete Vigil@nce bulletin
Characteristics
Title: Windows, IE: execution of HLP code via VBScript.
Keywords: CIFS Explorer HLP HTML Internet JavaScript MsgBox SMB VBScript VBscript Windows code execution winhlp32.
Identifiers: 981169, BID-38463, BID-38473, CVE-2010-0483, MS10-022, VIGILANCE-VUL-9480, VU#612021.
|
Information sources
Solutions for this vulnerability
Supplements
Computer vulnerabilities tracking service
The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.
The Vigil@nce vulnerability database contains several thousand vulnerabilities.
This bulletin is published by the Vigil@nce team, which tracks computer vulnerabilities impacting systems and applications.
Computer applications vulnerability
|
