Microsoft's Internet Explorer (IE) and MSN Messenger programs contain a security vulnerability that could be used by attackers to crash and possibly execute arbitrary code on a victim's system when they view a specially crafted image file.
SecurityFocus, a specialist security Web site, published an advisory on Saturday describing a vulnerability in the way IE and MSN Messenger client handles International Color Consortium (ICC) Profiles. ICC is an international colour management system that allows the same colours to be described in a number of operating systems and applications.
According to the advisory "both Microsoft Internet Explorer and MSN Instant Messenger can be crashed if image data with malformed embedded ICC profile data is processed. The condition is likely due to an integer handling error."
But according to iDefense, another security company, the flaws were patched last Tuesday.
A spokesperson from Sydney-based security specialists Pure Hacking, said that if a vulnerable user opens a specially crafted image file, they could allow arbitrary code to be executed on their computer.
"If MSN Messenger or IE opened an image, according to this advisory, it would be possible to at least crash it — it would have to be a malformed image and designed to do that," the spokesperson said.
Additionally, the vulnerability could be used to spread a worm: "If it all holds true, it may be possible to create a worm to take advantage of the vulnerability — but only if it is possible to execute code [on the vulnerable system] — which, at this stage, hasn't be done — there hasn't been a proof of concept, yet," the spokesperson said.
Last October, Microsoft released a patch to fix a similar vulnerability that affected Windows and a number of its other applications. At the time, experts said the potential for attack was "very high".
Munir Kotadia reported from Sydney for ZDNet Australia. For more ZDNet Australia stories, click here.
Talkback
I have a terrible thing on my pc, because of msn messenger, my host is in the black list. I really don't understand how and why - i havent done anything stupid. I understand computers, but this problem is difficult - even any spyware software can not get rid of it! and also that message "host in the black list" only appears in different user log in name on my computer. there is some worm who attacked to my pc and instaled it self into my registry and i can not delete it - it comes back as registry errors has been changed. Please, someone help me please. I like msn messenger the best of all other messengers, but it causes problems...
What can one do if you discover when clicking on some links, nothing happens? Then looking into the files, seeing things like dos.sys, bootlog.prv etc almost invisible
We are caught up in the all mighty god the dollar bill that we can't and will not give away anything for free.We say sucurity what we mean is worthiness.How much money you have in your bank account decides if you live or die in the U.S