Signature Detail
Short Name |
HTTP:STC:IMG:JPEG-SCRIPT |
|---|---|
Severity |
Medium |
Recommended |
No |
Category |
HTTP |
Keywords |
Internet Explorer Cross Site Scripting Via JPEG |
Release Date |
2005/06/01 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Internet Explorer Cross Site Scripting Via JPEG
This signature detects attempts to exploit a known vulnerability in Internet Explorer. Internet Explorer contains a mime type error that enables a file with JPEG extension to be executed as a script. Attackers can include a script within a .jpg file to perform cross site scripting exploits.
Extended Description
An HTML parser feature included in Internet Explorer could allow malicious script, included in a HTML file that is saved as another file type, to execute upon attempting to open the file. For example, if a file has a .gif, .txt, or .jpg etc. file extension, and it contains HTML tags along with arbitrary script. IE will detect the content type and not open the file according to the extension, it will be opened as an HTML file. Possibly allowing the execution of the arbitrary script.
Affected Products
- Microsoft Internet Explorer 5.0
- Microsoft Internet Explorer 5.0.1
- Microsoft Internet Explorer 5.0.1 SP1
- Microsoft Internet Explorer 5.0.1 SP2
- Microsoft Internet Explorer 5.5
- Microsoft Internet Explorer 5.5 SP1
References
- BugTraq: 3116
- CVE: CVE-2001-0712
- URL: http://www.securityfocus.com/archive/1/200291