Reportedly, Microsoft Internet Explorer is affected by a user security confirmation bypass vulnerability. This issue is due to a design error that allows malicious users to trivially bypass the requirement for user confirmation.
An attacker may leverage this issue by hosting a web page or pages designed to bypass the required user confirmation; this would facilitate the execution of arbitrary client side scripts such as JavaScript and ActiveX objects in the browsers of unsuspecting users that visit the site.
No exploit is required to leverage this issue. Reportedly a comment of the following form, when placed between the '<!DOCTYPE>' and '<HTML>' tags, will trigger this issue:
<!-- saved from usr=(XXXX)URL -->
Where URL is a URL string, such as 'http://www.example.com' and XXXX is a four digit number that corresponds to the number of characters in the URL string.
An attacker may leverage this issue by hosting a web page or pages designed to bypass the required user confirmation; this would facilitate the execution of arbitrary client side scripts such as JavaScript and ActiveX objects in the browsers of unsuspecting users that visit the site.
No exploit is required to leverage this issue. Reportedly a comment of the following form, when placed between the '<!DOCTYPE>' and '<HTML>' tags, will trigger this issue:
<!-- saved from usr=(XXXX)URL -->
Where URL is a URL string, such as 'http://www.example.com' and XXXX is a four digit number that corresponds to the number of characters in the URL string.


Comment