Internet Explorer turns your personal computer into a public file server
- Type
- Paper
- Tags
- browser, exploiting, Internet Explorer, Windows
- Authors
- Jorge Luis Alvarez Medina
- Event
- Black Hat DC 2010
- Indexed on
- Mar 25, 2013
- URL
- http://www.blackhat.com/presentations/bh-dc-10/Medina_Jorge/BlackHat-DC-2010-Medina-Abusing-insecure-features-of-Internet-Explorer-wp.pdf
- File name
- BlackHat-DC-2010-Medina-Abusing-insecure-features-of-Internet-Explorer-wp.pdf
- File size
- 574.9 KB
- MD5
- ec49cb7b12fe95a50fd06adf6d6683b1
- SHA1
- bdee876f7bfee0f0e31d710f1a0b2b8d1147ff4e
In this presentation we will show how an attacker can read every file of your file system if you are using Internet Explorer. This attack leverages different design features of Internet Explorer entailing security risks that, while low if considered isolated, lead to interesting attack vectors when combined altogether. We will also disclose and demonstrate proof of concept code developed for the scenarios proposed.
About us
Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.
Statistics
Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.
Contribute
To support this site and keep it alive, you can click on the buttons below. Any help is really appreciated! This service is provided for free, but real money is needed to pay bills.
