https://www.exploit-db.com/exploits/23122
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200311-051

MicrosoftInternetExplorer是一款流行的WEB浏览程序。MicrosoftInternetExplorer当处理基于XML的WEB站点时没有正确处理对象类型，远程攻击者可以利用这个漏洞把恶意对象安装并在系统上执行。由于没有正确处理嵌入在XML页面中的对象类型，攻击者构建包含恶意对象的XML页面，诱使用户访问，可导致目标用户会把这个对象以可信对象装载处理，因此精心构建对象数据可以在目标用户上安装和执行任意程序。

source: http://www.securityfocus.com/bid/8565/info

Internet Explorer does not properly handle object types, when rendering XML based web sites. This may result in the possibility of the execution of malicious software.

The problem occurs when Internet Explorer receives a response from the server when a malicious XML web page containing an embedded object tag is parsed. Successful exploitation of this vulnerability could allow a malicious object to be trusted and as such be installed and executed on the local system.

The Mindwarper exploit is actually reported to exploit one of the issues in BID 8577, which has not been addressed by the patches provided in MS03-040. 

<span datasrc="#oExec" datafld="exploit" dataformatas="html"></span> <xml id="oExec"> <security> <exploit> <![CDATA[ <object id="oFile" data="badnews.php"></object> ]]> </exploit> </security> </xml>

来源:BID
名称:8565
链接:http://www.securityfocus.com/bid/8565
来源:MS
名称:MS03-040
链接:http://www.microsoft.com/technet/security/bulletin/ms03-040.asp
来源:XF
名称:ie-xmlobject-code-execution(13300)
链接:http://xforce.iss.net/xforce/xfdb/13300
来源:OSVDB
名称:7887
链接:http://www.osvdb.org/7887
来源:USGovernmentResource:oval:org.mitre.oval:def:123
名称:oval:org.mitre.oval:def:123
链接:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:123