Aviv Raff

**Name of the Vulnerable Software and Affected Versions** Apple iPhone OS versions 1.0 through 2.2.1 Apple iPhone OS for iPod touch versions 1.1 through 2.2.1 **Description** The issue concerns the Mail component, which does not offer an option to disable remote image loading in HTML emails. This allows remote attackers to determine the device's address and when an email is read by sending an HTML email that contains an image URL. **Recommendations** For Apple iPhone OS versions 1.0 through 2.2.1, consider disabling HTML email rendering until a fix is available. For Apple iPhone OS for iPod touch versions 1.1 through 2.2.1, consider disabling HTML email rendering until a fix is available.

**Name of the Vulnerable Software and Affected Versions** Apple Safari versions prior to 3.1.2 on Windows Apple Safari on Mac OS X (affected versions not specified) Internet Explorer 7 on Windows XP (affected versions not specified) Windows XP, Vista, and Server 2003 and 2008 (affected versions not specified) **Description** The issue allows remote attackers to place malware into specific directories, which can lead to the execution of arbitrary code. This is possible due to an untrusted search path vulnerability in certain Windows components and Internet Explorer. An attacker could exploit this by convincing a user to download a specially crafted file to a specific location or by constructing a specially crafted web page. If successfully exploited, an attacker could gain the same user rights as the logged-on user, potentially taking complete control of an affected system. **Recommendations** For Apple Safari on Windows, update to version 3.1.2 or later. For Apple Safari on Mac OS X, consider disabling the automatic download feature for unrecognized content types until a patch is available. For Internet Explorer 7 on Windows XP, restrict access to untrusted websites and avoid opening suspicious files. For Windows XP, Vista, and Server 2003 and 2008, consider implementing additional security measures to prevent the exploitation of the SearchPath function vulnerability, such as restricting file access permissions. At the moment, there is no information about a newer version that contains a fix for this vulnerability in Mac OS X.

Name of the Vulnerable Software and Affected Versions: Internet Explorer versions 6.0 through 8.0b Description: A cross-zone scripting issue in the Print Table of Links feature allows remote attackers to inject arbitrary web script or HTML in the Local Machine Zone. This is achieved through an HTML document containing a link with JavaScript sequences, which are evaluated by a resource script when a user prints the document. Recommendations: For Internet Explorer versions 6.0 through 8.0b, consider disabling the Print Table of Links feature as a temporary workaround until a patch is available. Restrict access to the resource script that evaluates JavaScript sequences in printed documents to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Windows XP and Server 2003 with Internet Explorer 7 installed Description: The issue concerns the Windows shell's handling of URIs, specifically the URL handling in Shell32.dll, which allows remote attackers to execute arbitrary programs via invalid "%" sequences in a mailto: or other URI handler. This could potentially be exploited by including a specially crafted URI in an application or attachment, allowing for remote code execution. The issue might be related to other problems involving URL handlers in Windows systems and could also involve separate issues in applications invoked by the handlers. Recommendations: For Windows XP and Server 2003 with Internet Explorer 7 installed, consider restricting the use of URI handlers to minimize the risk of exploitation until a fix is available. Avoid using applications that invoke URI handlers with untrusted input. As a temporary workaround, consider disabling the handling of mailto: and other URI handlers in the Windows shell until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Maxthon version 1.2.0 **Description** The issue allows remote malicious web sites to obtain potentially sensitive data from the search bar via the `m2 search text` property. **Recommendations** For Maxthon version 1.2.0, consider restricting access to the `m2 search text` property to minimize the risk of exploitation.