CVE-2007-5456

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer versions 7 and earlier

Description: The issue allows remote attackers to bypass the "File Download - Security Warning" dialog box and download arbitrary .exe files. This is achieved by placing a '?' (question mark) followed by a non-.exe filename after the .exe filename. Various non-.exe filename extensions can be used, including .txt, .cda, .log, .dif, .sol, .htt, .itpc, .itms, .dvr-ms, .dib, .asf, and .tif. This bypasses an intended protection mechanism, although it might not cross privilege boundaries.

Recommendations: For Microsoft Internet Explorer versions 7 and earlier, consider disabling the download of .exe files or implementing additional security warnings to minimize the risk of exploitation. Restrict access to potentially vulnerable extensions to prevent unintended downloads. At the moment, there is no information about a newer version that contains a fix for this vulnerability.