| Description:
|
Details
Exploit.IFrame.FileDownload
Exploit takes advantage of a security breach in MS Internet Explorer 5.01, 5.5 and Outlook.
Some Internet worms use this breach to activate themselves from HTML e-mail messages. Examples of such worms are: Aliz, BadtransII, Nimda, and Toil.
This vulnerability allows for the opening or previewing of an infected HTML e-mail message to activate any file or program attached to a message without any security warning from MS Internet Explorer. This breach may also be used in any HTML page (as I-Worm.Nimda does).
This security breach in MS Internet Explorer was discovered in March 2001, and described in the Microsoft Security Bulletin at http://www.microsoft.com/technet/security/bulletin/MS01-020.asp.
The patch eliminating this breach was released by Microsoft on 29 March 2001, and is available for downloading at http://www.microsoft.com/windows/ie/downloads/critical/q290108/default.asp. |
