MSIE7 Software Enumeration.

Publicated on : 1184979923
After my previous post Billy Rios contacted me and showed me some of his own research on enumerating software in MSIE7. It shows that MSIE7 is still vulnerable to software enumeration like it was in MSIE 6 only a tad different. MSIE7 dropped remote file access for resource identifiers like: file:// and completely dropped any support for telnet:// and gopher:// but this example shows again that any single bit of information can and will be abused. Quite interesting stuff to dive into.

Example string:

var acrobat7 =new Image();
acrobat7.src ="res://c:\program%20files\adobe\acrobat%207.0\acrobat\acrobat.dll/#2/#210"

if (acrobat7.height != 30)
{
document.write("Adobe acrobat 7 <br>");
}


More information by Billy: