Vulnerability Development mailing list archives
Re: local security workaround through IE
From: thegreencow () EV1 NET (thegreencow)
Date: Fri, 24 Mar 2000 21:57:02 -0600
Another interesting local work around is the help file. Simply click start/help/index and type in anything. If it is something configuarable with windows then it will have a link embedded in the help file. Clicking this will result in whatever system dialog displaying reguardless if the admin hid control panel etc. At least in windows 9x. ~thegreencow ----- Original Message ----- From: Knud Erik Højgaard <kain () EGOTRIP DK> To: <VULN-DEV () SECURITYFOCUS COM> Sent: Thursday, February 24, 2000 5:12 PM Subject: local security workaround through IE On many 'crippled' public computers (at libraries etc.) running some sort of restriction software, its possible to use file/open/browse in IE, type for instance c:\ as filename, and get a directory overview. Nice for determining what kind of security software is running, (by looking in 'program files' *doh daft admins*) deleting files etc. . This is not a bug in IE, just bad programming from the software dudes...i guess? Right click the file you want to run, and instead of choosing the top option called 'select', use #2 called 'open' ... sometimes access is disallowed to certain files IE command.com etc. , but simply downloading the file from somewhere else or copying it to another location usually lets you run pretty much whatever you want. I've had loads of fun mass OOB'ing libraries from one of their own machines..yes i know its lame, but i kind of like looking at 40 screens turning blue one after another.. comments anyone ? Knud Erik Højgaard kain () perker dk Poor helldesk worker.
Current thread:
- Re: Intel Corporation, Express 550F Switch unlimited password attempts] Dustin D. Trammell (Mar 20)
- Re: Intel Corporation, Express 550F Switch unlimited password attempts] Juan M. Courcoul (Mar 23)
- Novell Netware Copy first Last (Mar 23)
- local security workaround through IE Knud Erik Højgaard (Feb 24)
- Re: local security workaround through IE thegreencow (Mar 24)
- Re: local security workaround through IE Blue Boar (Mar 24)
- Re: local security workaround through IE Knud Erik Højgaard (Feb 25)
- local security workaround through IE Knud Erik Højgaard (Feb 24)
- Re: Novell Netware Copy Richard Beels (Mar 24)
- Ehmm..in reagards to the con\con-problem, and ftp-servers Odd Arne Beck (Mar 24)
- Re: Novell Netware Copy Bob Fiero (Mar 24)
- Re: Novell Netware Copy Bluefish (Mar 25)
- <Possible follow-ups>
- Re: Intel Corporation, Express 550F Switch unlimited password attempts] Dustin D. Trammell (Mar 24)