Secunia Advisory - Microsoft Internet Explorer Vulnerabilities

Anyone browsing with Microsoft Internet Explorer 6 should take a look at the advisory at Secunia - this one’s marked as ‘Extremely Critical’:

Two vulnerabilities have been reported in Internet Explorer, which in combination with other known issues can be exploited by malicious people to compromise a user’s system. The vulnerabilities are actively being exploited in the wild to install adware on users’ systems. Secunia has confirmed the vulnerabilities in a fully patched system with Internet Explorer 6.0. It has been reported that the preliminary SP2 prevents exploitation by denying access.

1) A variant of the "Location:" local resource access vulnerability can be exploited via a specially crafted URL in the "Location:" HTTP header to open local files.
Example:
"Location: URL:ms-its:C:WINDOWSHelpiexplore.chm::/iegetsrt.htm"

2) A cross-zone scripting error can be exploited to execute files in the "Local Machine" security zone.

Successful exploitation requires that a user can be tricked into following a link or view a malicious HTML document.

Internet Explorer Local Resource Access and Cross-Zone Scripting Vulnerabilities @ Secunia