IE CreateTextRange Remote Code Execution Vulnerability

Forums › Geekzone › IE CreateTextRange Remote Code Execution Vulnerability

chrisbud1

4 posts

Wannabe Geek
Inactive user

#7284 3-Apr-2006 20:39

Hello,

If somebody can please help me I would be most grateful.

I only use Firefox, unless it appears the page I am viewing will not display properly. In such a case I view that page in IE.

Yesterday I thought the page I was viewing in Firefox might not be displaying properly, so I viewed such page in IE. When I viewed the page in IE two or three other windows popped up (I believe it was just two windows that popped up, but I am not sure) and IE froze and stopped responding. I managed to shut IE down by way of the taskbar, but it took a about 30 seconds for me to get it to shut down (I had to repeatedly shut IE down using the End Program dialog box before IE actually shut down).

I am concerned the page I viewed in IE took advantange of the IE CreateTextRange Remote Code Execution Vulnerability and has infected my computer.

1) Does anybody know how I can tell if I have been infected?

2) If I have been infected what can I do about it? Would antivirus programs (like Norton Antivirus 2006) or spyware programs (like SpySweeper) identify and remove such an infection? Once Microsoft issues a patch for the vulnerability will that remove the infection (assuming I have been infected)?

Thank you to anybody who can help me.

Have a nice day, Chris

chrisbud1

4 posts

Wannabe Geek
Inactive user

#32143 3-Apr-2006 21:17

I neglected to mention that I use Windows XP Professional.

freitasm

BDFL - Memuneh
80653 posts

Uber Geek
+1 received by user: 41045

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#32146 3-Apr-2006 23:02

The vulnerability in itself is not going to infect your computer - but someone could use it to run a program that would be allowed to change some configuration, or to install some software.

If it really happened and if it had installed a program then your antivirus and antispyware should be ok to find these. If a configuration was changed then you might have to restore the system to the last saved restore point (Start | Programs | Accessories | Systems Tools | System Restore).

Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

chrisbud1

4 posts

Wannabe Geek
Inactive user

#32158 4-Apr-2006 06:59

Dear freitasm,

Thank u very much for taking the time to read my post and reply! I ran my antivirus (norton antivirus 2006) and spyware (spysweeper) after and they did not find anything. So I guess I was not taken advantage of due to this vulnerability. In any event, I will not use IE again until this vulnerability has been resolved. Downloaded extension so firefox can display IE only pages now.

Again, thank u for yr time, Chris

tonyhughes

Hawkes Bay
8476 posts

Uber Geek
+1 received by user: 6

Retired Mod

Trusted

Lifetime subscriber

#32162 4-Apr-2006 07:54

chrisbud1: In any event, I will not use IE again until this vulnerability has been resolved. Downloaded extension so firefox can display IE only pages now.

Hi chrisbud1, the extension is actually running IE to display pages when you use it, so you will be open to any vulnerabilities as you were before.

Cheers

chrisbud1

4 posts

Wannabe Geek
Inactive user

#32226 4-Apr-2006 19:40

Dear tonyhughes,

Thank u for this info. I would not have known if u did not tell me.

Regards, Chris