Jimcihii, Abriil 12, khabiir ku takhasusay amniga macluumaadka John Page ayaa daabacay macluumaadka ku saabsan dayacanka aan la sixin ee nooca hadda ee Internet Explorer, oo sidoo kale muujiyay hirgelintiisa. Nuglaantani waxay u oggolaan kartaa weeraryahan inuu helo waxa ku jira faylalka maxalliga ah ee isticmaaleyaasha Windows, isagoo ka gudbaya amniga browserka.
Nuglaanta waxay ku jirtaa habka Internet Explorer u maamulo faylasha MHTML, sida caadiga ah kuwa leh .mht ama .mhtml kordhinta. Qaabkan waxaa isticmaala Internet Explorer si caadi ah si loo badbaadiyo boggaga internetka, wuxuuna kuu ogolaanayaa inaad kaydiso dhammaan waxyaabaha ku jira bogga oo ay la socdaan dhammaan waxyaabaha ku jira warbaahinta sida hal fayl. Waqtigan xaadirka ah, inta badan daalacayaasha casriga ah mar dambe ma keydiyaan boggaga internetka ee qaabka MHT waxayna isticmaalaan qaabka caadiga ah ee WEB - HTML, laakiin waxay weli taageeraan habaynta faylasha qaabkan, waxayna sidoo kale u isticmaali karaan kaydinta goobaha ku habboon ama isticmaalka kordhinta.
Nuglaanta uu ogaaday John waxa iska leh XXE (XML eXternal Entity) fasalka dayacan waxayna ka kooban tahay qaabaynta khaldan ee maamulaha koodhka XML ee Internet Explorer. "Nuglaantan ayaa u oggolaanaysa weeraryahan fog inuu galo galka maxalliga ah ee isticmaalaha iyo, tusaale ahaan, soo saaro macluumaadka ku saabsan nooca software-ka ee lagu rakibay nidaamka," ayuu yiri Page. "Markaa weydiinta 'c:Python27NEWS.txt' waxay soo celin doontaa nooca barnaamijkaas (turjumaanka Python kiiskan)."
Maadaama Windows dhammaan faylasha MHT ay si toos ah ugu furan yihiin Internet Explorer, ka faa'iidaysiga dayacankaani waa hawl yar maadaama isticmaaluhu kaliya u baahan yahay inuu laba-guji faylka khatarta ah ee lagu helo iimaylka, shabakadaha bulshada ama fariimaha degdega ah.
"Caadi ahaan, marka la abuurayo tusaale ahaan shay ActiveX, sida Microsoft.XMLHTTP, isticmaaluhu wuxuu heli doonaa digniin ammaan gudaha Internet Explorer kaas oo waydiisan doona xaqiijin si uu u dhaqaajiyo waxyaabaha la xiray," ayuu yiri cilmi-baaruhu. "Si kastaba ha ahaatee, marka la furayo faylka .mht ee horay loo sii diyaariyay iyadoo la isticmaalayo calaamado si gaar ah loo habeeyey isticmaaluhu ma heli doono digniino ku saabsan waxyaabaha waxyeelada leh."
Sida laga soo xigtay Page, wuxuu si guul leh u tijaabiyay u nuglaanshaha nooca hadda ee Internet Explorer 11 browserka oo leh dhammaan cusbooneysiintii ugu dambeysay ee amniga ee Windows 7, Windows 10 iyo Windows Server 2012 R2.
Waxaa laga yaabaa in warka wanaagsan ee kaliya ee siideynta dadweynaha ee dayacankaani ay tahay xaqiiqda ah in Internet Explorer saamigeedii hore ee suuqa uu hadda hoos ugu dhacay 7,34% kaliya, sida laga soo xigtay NetMarketShare. Laakiin maadaama Windows ay u isticmaasho Internet Explorer sida codsiga caadiga ah si ay u furto faylalka MHT, isticmaalayaashu qasab maaha inay IE u dhigaan biraawsarkooda caadiga ah, walina way nugul yihiin ilaa inta IE wali ku jiro nidaamyadooda oo aanay lacag bixin. Fiiro gaar ah u yeelo qaabka soo dejinta ee faylasha internetka.
Dabayaaqadii Maarso 27, John wuxuu Microsoft ku wargeliyay nuglaantan browserkooda, laakiin Abriil 10, cilmi-baadhaha ayaa jawaab ka helay shirkadda, halkaas oo ay muujisay inaysan u tixgelin dhibaatadan mid muhiim ah.
"Habitaanka ayaa kaliya lagu sii dayn doonaa nooca xiga ee alaabta," Microsoft ayaa ku tiri warqadda. "Hadda ma hayno wax qorshe ah oo aan ku sii deyno xal arrintan."
Ka dib jawaab cad oo ka timid Microsoft, cilmi-baaruhu wuxuu daabacay faahfaahinta nuglaanshaha eber-maalin boggiisa, iyo sidoo kale code demo iyo muuqaal YouTube ah.
In kasta oo hirgelinta dayacankani aanu ahayn mid fudud oo u baahan in si uun loogu qasbo isticmaaluhu inuu wado fayl MHT ah oo aan la garanayn, nuglaantan waa inaan si fudud loo qaadanin inkasta oo ay jawaabtu ka maqan tahay Microsoft. Kooxaha Hackers-ku waxay hore u isticmaaleen faylasha MHT phishing iyo qaybinta malware-ka, mana jirto wax ka joojinaya inay sidaas sameeyaan hadda.
Si kastaba ha ahaatee, si looga fogaado tan iyo qaar badan oo la mid ah baylahda, kaliya waxaad u baahan tahay inaad fiiro gaar ah u yeelato kordhinta faylasha aad ka hesho internetka oo aad ka hubiso antivirus ama shabakada VirusTotal. Nabadgelyada lagu daro, si fudud u dhig browserka aad jeceshahay ee aan ahayn Internet Explorer sida codsiga caadiga ah ee faylasha .mht ama .mhtml. Tusaale ahaan, gudaha Windows 10 tan si fudud ayaa loogu sameeyaa menu "Dooro codsiyada caadiga ah ee noocyada faylalka".
Source: 3dnews.ru