Two weaknesses have been discovered in Microsoft Internet Explorer, which can be exploited by malicious people to disclose sensitive information.
1) An error when handling cache objects can be exploited to enumerate visited sites.
This weakness is confirmed in Internet Explorer 6, 7, 8, and 9. Other versions may also be affected.
2) The application does not properly handle objects returned by the "getComputedStyle()" function, which can be exploited to enumerate visited sites.
This weakness is confirmed in Internet Explorer 6, 7, and 8. Other versions may also be affected.
Solution: Enable "InPrivate Browsing" when browsing untrusted websites or do not browse untrusted websites.
Provided and/or discovered by: 1) Originally discussed by Edward W. Felten and Michael A. Schneider, Princeton University. Additional information and proof provided by Michal Zalewski.
2) Artur Janc and Lukasz Olejnik.
Original Advisory: Edward W. Felten and Michael A. Schneider:
Artur Janc and Lukasz Olejnik:
Do you have additional information related to this advisory?
Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this
information to firstname.lastname@example.org
Subject: Microsoft Internet Explorer Two History Enumeration Weaknesses