Movatterモバイル変換


[0]ホーム

URL:


Jump to content
WikipediaThe Free Encyclopedia
Search

IExpress

From Wikipedia, the free encyclopedia
Not to be confused withiXpress.
Software included within Microsoft Windows
IExpress
Screenshot of IExpress inWindows 11
DeveloperMicrosoft
Operating systemWindows NT
TypeSelf-contained installation packages maker

IExpress, a component ofWindows 2000 and later versions of the operating system, is used to createself-extracting packages from a set of files. Such packages can be used to install software.

Overview

[edit]

IExpress (IEXPRESS.EXE) can be used for distributing self-contained installation packages (INF-based setup executables) to multiple local or remote Windows computers. It creates a self-extracting executable (.EXE) or a compressed Cabinet (.CAB) file using either the provided front end interface (IExpress Wizard), or a custom Self Extraction Directive (SED) file.[1]SED files can be modified with any plain text/ASCII editor, likeNotepad. All self-extracting files created by IExpress useCAB compression algorithms, are compressed using the Cabinet Maker (MAKECAB.EXE) tool,[2] and are extracted using the WExtract (WEXTRACT.EXE) tool.

IEXPRESS.EXE is located in theSYSTEM32 folder of both 32 and 64-bit installations of Windows. The front end interface (IExpress Wizard) can be started by manually navigating to the respective directory and opening the executable (IExpress.exe), or by typing IExpress into the Run window of the Start Menu. It can also be used from a Windowscommand processor shell orbatch file to create custom instal­lation packages, eventually unattended (i.e., auto­mated operation):

IEXPRESS /N drive_letter:\directory_name\file_name.SED

IExpress Wizard interface guides the user through the process of creating a self-extracting package. It asks what the package should do: extract files and then run a program, or just extract files. It then allows the user to specify a title for the package, add a confirmation prompt, add a license agreement that the end-user must accept in order to allow extraction, select files to be archived, set display options for the progress window, and finally, specify a message to display upon completion.

If the option to create an archive and run a program is selected, then there will be an additional step, prompting the user to select the program that will be run upon extraction.

Security

[edit]

The self-extracting packages created with IExpress have (inherent)vulnerabilities which allowarbitrary code execution because of the way they handle their installation command and their command line processing.[3][4] Additionally, because of the way WindowsUser Account Control handles installers, these vulnerabilities allow forprivilege escalation.[5][6]

Specifically, the two inherent vulnerabilities in IExpress are:

  • a/c: switch tells the package to run an arbitrary command in the extracted directory,[6] and
  • the directory is predictable and writable by any ordinary user, resulting in the usualmsiexec.exe command being user-replaceable by an attack payload.[5]

The latter point has been fixed by Microsoft in MS14-049, but the former is only addressed by a policy to deprecate IExpress.[6] In addition, aDLL hijacking exploit is also possible with IExpress.[7]

See also

[edit]

References

[edit]
  1. ^MDGx:INF Guide: SED Overview
  2. ^MS TechNet:IExpress Technology and the IExpress Wizard
  3. ^MS Knowledge Base:Command-line switches for IExpress software update packages
  4. ^MS TechNet:IExpress command-line options
  5. ^abFullDisclosure:Defense in depth -- the Microsoft way (part 11): privilege escalation for dummies
  6. ^abcFullDisclosure:Defense in depth -- the Microsoft way (part 33): yet another (trivial) UAC bypass resp. privilege escalation
  7. ^"[CVE-2016-0014] Executable installers are vulnerable^WEVIL (case 1): Microsoft's IExpress resp. WExtract, SFXCab, BoxStub, ..."seclists.org.

External links

[edit]
Management
tools
Apps
Shell
Services
File systems
Server
Architecture
Security
Compatibility
API
Games
Discontinued
Games
Apps
Others
Spun off to
Microsoft Store
Retrieved from "https://en.wikipedia.org/w/index.php?title=IExpress&oldid=1292919129"
Category:
Hidden categories:

[8]ページ先頭

©2009-2026 Movatter.jp