Signature Detail

HTTP: Internet Explorer JavaScript Method Assignment Cross-Domain Scripting

This signature detects attempts to exploit a known vulnerability against JavaScript. Maliciously crafted downloaded HTML documents containing the "location.assign" JavaScript function, can force Internet Explorer into executing potentially harmful JavaScript in a trusted security zone.

Extended Description

A vulnerability exists in Microsoft Internet Explorer that may allow cross-domain/cross-zone scripting. It is reported that the vulnerability presents itself due to a failure to properly validate trust relationships between method calls that are made in separate Internet Explorer windows. This may make it possible for script code to access properties of a foreign domain or Security Zone. Exploitation may permit execution of arbitrary code as the victim user.

Affected Products

• Avaya DefinityOne Media Servers
• Avaya IP600 Media Servers
• Avaya Modular Messaging (MSS) 1.1.0
• Avaya Modular Messaging (MSS) 2.0.0
• Avaya S3400 Message Application Server
• Avaya S8100 Media Servers
• Microsoft Internet Explorer 5.0.1
• Microsoft Internet Explorer 5.0.1 SP1
• Microsoft Internet Explorer 5.0.1 SP2
• Microsoft Internet Explorer 5.0.1 SP3
• Microsoft Internet Explorer 5.0.1 SP4
• Microsoft Internet Explorer 5.5
• Microsoft Internet Explorer 5.5 SP1
• Microsoft Internet Explorer 5.5 SP2
• Microsoft Internet Explorer 6.0
• Microsoft Internet Explorer 6.0 SP1

References

• BugTraq: 10689
• CVE: CVE-2004-0727
• URL: http://www.securityfocus.com/archive/1/369167
• URL: http://www.microsoft.com/technet/security/bulletin/ms04-038.mspx
• URL: http://www.us-cert.gov/cas/techalerts/TA04-293A.html