Title: Microsoft IE5 Offline Browsing Pack Task Scheduler Vulnerability
Severity: HIGH
Description:
The Internet Explorer 5 Offline Browsing Pack includes the Task Scheduler utility. This program is similar to the NT AT service, and on NT systems, it replaces the AT service. The Task Scheduler will allow unauthorized users to create AT jobs by modifying an existing, administrator-owned file and placing it into the %systemroot%\tasks folder.
This vulnerability could only be exploited remotely if the tasks folder was specifically shared, or through the default C$ share on NT. Task Scheduler can be made to use any other arbitrary folder by editing the following registry key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SchedulingAgent\TasksFolder (Changes will not take effect until after the target has been rebooted.)
The IE5 Offline Browsing Pack ships with IE5, but is not installed by default.
Affected Products:
- Microsoft Internet Explorer 5.0 for Windows 95
- Microsoft Internet Explorer 5.0 for Windows 98
- Microsoft Internet Explorer 5.0 for Windows NT 4.0
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0
References:
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
