Forum Thread: Internet Explorer File Download Extension Spoofing

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Vulnerabilities

See the original Secunia advisory:
Internet Explorer File Download Extension Spoofing

Secunia Internet Explorer File Download Extension Spoofing
Secunia Official 26th Nov, 2010 02:15
Ranking: 0
Posts: 0
User Since: -
System Score: -
Location: Copenhagen, DK
http-equiv has identified a vulnerability in Internet Explorer, allowing malicious web sites to spoof the file extension of downloadable files.

The problem is that Internet Explorer can be tricked into opening a file, with a different application than indicated by the file extension. This can be done by embedding a CLSID in the file name. This could be exploited to trick users into opening "trusted" file types which are in fact malicious files.

Secunia has created an online test:
http://secunia.com/Internet_Explorer_File_Download...

This has been reported to affect Microsoft Internet Explorer 6.

NOTE: Prior versions may also be affected.

WSBOBO

RE: Internet Explorer File Download Extension Spoofing
[+]
This reply has been minimised due to a negative Relevancy Score.

WSBOBO

RE: Internet Explorer File Download Extension Spoofing
[+]
This reply has been minimised due to a negative Relevancy Score.