Re: local security workaround through IE

[thegreencow () EV1 NET (thegreencow)]

Another interesting local work around is the help file. Simply click
start/help/index and type in anything. If it is something configuarable with
windows then it will have a link embedded in the help file. Clicking this
will result in whatever system dialog displaying reguardless if the admin
hid control panel etc.

At least in windows 9x.

~thegreencow

----- Original Message -----
From: Knud Erik Højgaard <kain () EGOTRIP DK>
To: <VULN-DEV () SECURITYFOCUS COM>
Sent: Thursday, February 24, 2000 5:12 PM
Subject: local security workaround through IE

On many 'crippled' public computers (at libraries etc.) running some sort
of restriction software, its possible to use file/open/browse in IE, type
for instance c:\ as filename, and get a directory overview. Nice for
determining what kind of security software is running, (by looking in
'program files' *doh daft admins*) deleting files etc. . This is not a bug
in IE, just bad programming from the software dudes...i guess?
Right click the file you want to run, and instead of choosing the top
option called 'select', use #2 called 'open' ... sometimes access is
disallowed to certain files IE command.com etc. , but simply downloading
the file from somewhere else or copying it to another location usually lets
you run pretty much whatever you want. I've had loads of fun mass OOB'ing
libraries from one of their own machines..yes i know its lame, but i kind
of like looking at 40 screens turning blue one after another..

comments anyone ?

Knud Erik Højgaard
kain () perker dk
Poor helldesk worker.