WebApp Sec mailing list archives
RE: Writing to a local file without a warning
From: "Damhuis Anton" <DamhuisA () aforbes co za>
Date: Wed, 29 Mar 2006 07:14:26 +0200
Hi Frank I am pretty sure I have used the FSO (File System Object) to write to text files from HTA applications, with no security warnings. Give that a try Regards Anton -----Original Message----- From: Frank Heyne [mailto:fh () rcs urz tu-dresden de] Sent: 28 March 2006 18:33 To: webappsec () securityfocus com Subject: Writing to a local file without a warning Hello, Question: Is it possible to write a local file from a ht* file without the interception of a warning or other dialog? ------------------------------------------------------------------------- This List Sponsored by: SpiDynamics ALERT: "How A Hacker Launches A Web Application Attack!" Step-by-Step - SPI Dynamics White Paper Learn how to defend against Web Application Attacks with real-world examples of recent hacking methods such as: SQL Injection, Cross Site Scripting and Parameter Manipulation https://download.spidynamics.com/1/ad/web.asp?Campaign_ID=701300000003gRl --------------------------------------------------------------------------
Current thread:
- Writing to a local file without a warning Frank Heyne (Mar 28)
- <Possible follow-ups>
- RE: Writing to a local file without a warning Griffiths, Ian (Mar 28)
- Re: Writing to a local file without a warning Todd Hendricks (Mar 29)
- Re: Writing to a local file without a warning Frank Heyne (Mar 29)
- Re: Writing to a local file without a warning Todd Hendricks (Mar 29)
- RE: Writing to a local file without a warning Damhuis Anton (Mar 29)