Microsoft recently released a security advisory for a certain vulnerability that affects all supported Microsoft Windows systems. The vulnerability specifically involves Internet Explorer and its impact is described to be similar to those of server-side cross-site scripting (XSS) vulnerabilities.
According to the security advisory, the bug is related to how MIME Encapsulation of Aggregate HTML (MHTML) interprets MIME-formatted requests. MHTML is basically the file format used to save entire Web pages, which includes actual page content, format, and others such as images and animations. Although no active attacks leveraging the said vulnerability has been found, the availability of the proof of concept (POC) to the public increases the chances that it will be maliciously used.
In a typical attack scenario, an attacker may convince a user through social engineering techniques to click a specially crafted link that injects a malicious script into the user’s instance of Internet Explorer. This then enables the attacker to execute certain routines such as altering content on the currently displayed site, to collect user information, or to even take action in the displayed site without the consent of the affected user.
The continued exploitation of vulnerabilities in OSs is just one of the Trend Micro threat predictions this year. 2011 is set to bring about growth in exploits for alternative OSs, programs, and Web browsers, combined with tremendous growth in the exploitation of application vulnerabilities.
Microsoft provided workarounds that users may implement while waiting for the patch to be released. Trend Micro, on the other hand, protects users from exploits that may arise through Deep Security and OfficeScan with Intrusion Defense Firewall (IDF) plug-in.
Post from: TrendLabs | Malware Blog – by Trend Micro
Vulnerability in MHTML Found
Related Posts
- WPA2 vulnerability found
Perhaps it was only a matter of time. But wireless security researchers say they have uncovered a vulnerability in the WPA2 security protocol, which is the strongest form of Wi-Fi encryption and authe... - Skype ‘Extras Manager’ Vulnerability Found In The Wild
Reference: http://www.m86security.com/labs/i/Skype-Extras-Manager-Vulnerability-Found-In-The-Wild,trace.1347~.aspOn October 12th, 2009, Skype released an updated version (4.1.0.179) of their popular ... - Firefox 4 gets its first security update
Yesterday, five weeks after shipping Firefox 4, the Mozilla project published the new browser's first-ever security update. The Firefox version number bumps up to 4.0.1.The update fixes 50-odd bugs in... - WordPress 3.1.2 released – Security fixes
The WordPress team just released a new version of WordPress (3.1.2) to fix a security issue where contributor-level users were allowed to publish posts. It is a small release, and everyone using WordP... - PlayStation Network hacked: Personal data of up to 70 million people stolen
Users of Sony's PlayStation Network are at risk of identity theft after hackers broke into the system, and accessed the personal information of videogame players.
The implications of the hack, which r... - PlayStation Network hacked: five days and counting..
The Sony PlayStation Network, used by millions of online videogame players around the world, has been offline since Wednesday 20th April.
You can still play games offline, but if you want to connect ... - Adobe updates Reader and Acrobat
A little earlier as announced, Adobe released updated versions of Adobe Acrobat and Reader. These programs were vulnerable to the Flash Player zero-day-vulnerability as well, which was fixed last week... - Flash Player Update available
Just a short notice on the now available Adobe Flash Player Update: Version 10.2.159.1 has been released which fixes the critical security vulnerability which allow attackers to infect computers with ... - Another Adobe Flash Zero-Day Found, Embedded in Word Documents
An exploit for another zero-day vulnerability in Adobe Flash Player was very recently found just a couple of weeks after Adobe patched a similar critical vulnerability, which was actively exploited an... - Analysis of the CVE-2011-0611 Adobe Flash Player vulnerability exploitation
About a month ago, we blogged about an Adobe Flash Player vulnerability (CVE-2011-0609) that was actively exploited in the wild. That exploit was hidden inside a Microsoft Excel document. Ov...
Posted on 08 February 2011. Tags: Found, MHTML, Vulnerability
